Vulnerabilities (CVE)

Filtered by vendor Qsan Subscribe
Filtered by product Xn8024r Firmware
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-37216 1 Qsan 4 Xn8008t, Xn8008t Firmware, Xn8024r and 1 more 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
QSAN Storage Manager header page parameters does not filter special characters. Remote attackers can inject JavaScript without logging in and launch reflected XSS attacks to access and modify specific data.