CVE-2024-32768

Published Nov 22, 2024

Last updated 3 months ago

CVSS medium 6.3

Overview

Description
A cross-site scripting (XSS) vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow remote attackers who have gained user access to inject malicious code. We have already fixed the vulnerability in the following version: Photo Station 6.4.3 ( 2024/07/12 ) and later
Source
security@qnapsecurity.com.tw
NVD status
Received

Risk scores

CVSS 3.1

Type
Secondary
Base score
6.3
Impact score
4.2
Exploitability score
2.1
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N
Severity
MEDIUM

Weaknesses

security@qnapsecurity.com.tw
CWE-79

Social media

Hype score
Not currently trending

  1. CVE-2024-32768 A cross-site scripting (XSS) vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow remote attackers who have gained use… https://t.co/5pGmJFPrxl

    @CVEnew

    22 Nov 2024

    199 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References