Vulnerability Details CVE-2024-50388
An OS command injection vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If exploited, the vulnerability could allow remote attackers to execute commands.
We have already fixed the vulnerability in the following version:
HBS 3 Hybrid Backup Sync 25.1.1.673 and later
Exploit prediction scoring system (EPSS) score
EPSS Score 0.068
EPSS Ranking 91.2%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2024-50388
-
cpe:2.3:a:qnap:hybrid_backup_sync:25.1.0.627