- Description
- A server-side request forgery (SSRF) vulnerability has been reported to affect Notes Station 3. If exploited, the vulnerability could allow remote authenticated attackers to read application data. We have already fixed the vulnerability in the following version: Notes Station 3 3.9.7 and later
- Source
- security@qnapsecurity.com.tw
- NVD status
- Received
CVSS 4.0
- Type
- Secondary
- Base score
- 9.4
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- CRITICAL
- security@qnapsecurity.com.tw
- CWE-918
- Hype score
- Not currently trending
[CVE-2024-38645: CRITICAL] Cyber security alert: SSRF vulnerability in Notes Station 3 allows attackers to access data. Update to version 3.9.7 to address the issue and stay secure.#cybersecurity,#vulnerability https://t.co/ix0WGDXkKY https://t.co/5xEkgxkxJH
@CveFindCom
22 Nov 2024
26 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-38645 A server-side request forgery (SSRF) vulnerability has been reported to affect Notes Station 3. If exploited, the vulnerability could allow remote authenticated attac… https://t.co/NG7sfWJraB
@CVEnew
22 Nov 2024
259 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes