安全ID : QSA-24-48
Vulnerability in Qsync Central
发布日期 : December 7, 2024
通用漏洞披露 : CVE-2024-50404
受影响产品: Qsync Central 4.4.x
严重程度
Moderate
状态
已解决
Summary
A link following vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow remote attackers who have gained user access to traverse the file system to unintended locations.
We have already fixed the vulnerability in the following version:
| Affected Product | Fixed Version |
| Qsync Central 4.4.x | Qsync Central 4.4.0.16_20240819 (2024/08/19) and later |
Recommendation
To fix the vulnerability, we recommend updating Qsync Central to the latest version.
Updating Qsync Central
- Log in to QTS or QuTS hero as an administrator.
- Open App Center and then click
.
A search box appears. - Type "Qsync Central" and then press ENTER.
Qsync Central appears in the search results. - Click Update.
A confirmation message appears.
Note: The Update button is not available if your Qsync Central is already up to date. - Click OK.
The system updates the application.
附件
致谢: c411e
修订历史:
V1.0 (December 07, 2024) - Published
