- Description
- A missing authentication for critical function vulnerability has been reported to affect Notes Station 3. If exploited, the vulnerability could allow remote attackers to gain access to and execute certain functions. We have already fixed the vulnerability in the following version: Notes Station 3 3.9.7 and later
- Source
- security@qnapsecurity.com.tw
- NVD status
- Received
CVSS 4.0
- Type
- Secondary
- Base score
- 9.3
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- CRITICAL
- security@qnapsecurity.com.tw
- CWE-306
- Hype score
- Not currently trending
QNAP の License Center/QTS などに複数の脆弱性:直ちにアップデートを! https://t.co/4QGtUsU0Bx QNAP の License Center/QTS/QuTS に存在する、複数の脆弱性が FIX しました。QNAP に関連する直近の記事は、2024/11/25 の「QNAP Notes Station 3 の脆弱性 CVE-2024-38643 などが… https://t.co/KhKmDE6whP
@iototsecnews
16 Dec 2024
129 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
Warning: Multiple vulnerabilities, incl. critical severity CVE-2024-38643 (9.8), have been identified in Notes Station 3. If exploited, these vulnerabilities could allow remote attackers to gain access to the system. Patch & advisory : https://t.co/FLdT5jIqbh #patch #patch #p
@CCBalert
28 Nov 2024
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2024-38643: CRITICAL] Critical vulnerability in Notes Station 3! Ensure to update to version 3.9.7 or later to fix missing authentication flaw that allows remote access to execute functions. #cybersecurity#cybersecurity,#vulnerability https://t.co/EK6TSkxVvw https://t.co/vY2
@CveFindCom
22 Nov 2024
26 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes