An unquoted search path or element vulnerability has been reported to affect QVR Smart Client. If exploited, the vulnerability could allow local authenticated administrators to execute unauthorized code or commands via unspecified vectors.
We have already fixed the vulnerability in the following version:
Windows 10 SP1, Windows 11, Mac OS, and Mac M1: QVR Smart Client 2.4.0.0570 and later
References
Link | Resource |
---|---|
https://www.qnap.com/en/security-advisory/qsa-24-22 | Vendor Advisory |
Configurations
History
24 Sep 2024, 16:44
Type | Values Removed | Values Added |
---|---|---|
First Time |
Qnap qvr Smart Client
Qnap |
|
CPE | cpe:2.3:a:qnap:qvr_smart_client:*:*:*:*:*:*:*:* | |
References | () https://www.qnap.com/en/security-advisory/qsa-24-22 - Vendor Advisory |
09 Sep 2024, 13:03
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
06 Sep 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-09-06 17:15
Updated : 2024-09-24 16:44
NVD link : CVE-2022-27592
Mitre link : CVE-2022-27592
CVE.ORG link : CVE-2022-27592
JSON object : View
Products Affected
qnap
- qvr_smart_client
CWE
CWE-428
Unquoted Search Path or Element