Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-2504

If exploited, this absolute path traversal vulnerability could allow attackers to traverse files in File Station. QNAP has already fixed these issues in QES 2.1.1 Build 20201006 and later.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 56.7%
CVSS Severity
CVSS v3 Score 5.8
CVSS v2 Score 5.0
Products affected by CVE-2020-2504
  • Qnap » Qes » Version: 1.1.4
    cpe:2.3:a:qnap:qes:1.1.4
  • Qnap » Qes » Version: 2.0.0
    cpe:2.3:a:qnap:qes:2.0.0
  • Qnap » Qes » Version: 2.1.0
    cpe:2.3:a:qnap:qes:2.1.0
  • Qnap » Qes » Version: 2.1.1
    cpe:2.3:a:qnap:qes:2.1.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved