CVE-2024-37045 - CERT CVE

  1. CVE-2024-37045

ID CVE-2024-37045
Sažetak A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the following versions: QTS 5.2.1.2930 build 20241025 and later QuTS hero h5.2.1.2929 build 20241025 and later
Reference
CVSS
Base: 4.9
Impact: 3.6
Exploitability:1.2
Pristup
VektorSloženostAutentikacija
NETWORK LOW HIGH
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE HIGH
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Zadnje važnije ažuriranje 23-09-2025 - 12:08
Objavljeno 22-11-2024 - 16:15