Qnap: >> Qumagie >> 1.10.0 Security Vulnerabilities
An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to execute commands via a network.
We have already fixed the vulnerability in the following version:
QuMagie 2.1.3 and later
CVSS Score
8.8
EPSS Score
0.004
Published
2023-11-10
A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network.
We have already fixed the vulnerability in the following version:
QuMagie 2.1.4 and later
CVSS Score
7.4
EPSS Score
0.001
Published
2023-11-10
A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network.
We have already fixed the vulnerability in the following version:
QuMagie 2.1.4 and later
CVSS Score
7.4
EPSS Score
0.001
Published
2023-11-10