安全ID : QSA-24-50
Vulnerability in License Center
发布日期 : December 7, 2024
通用漏洞披露 : CVE-2024-48863
受影响产品: License Center 1.9.x
严重程度
Important
状态
已解决
Summary
A command injection vulnerability has been reported to affect License Center. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands.
We have already fixed the vulnerability in the following version:
| Affected Product | Fixed Version |
| License Center 1.9.x | License Center 1.9.43 and later |
Recommendation
To fix the vulnerability, we recommend updating License Center to the latest version.
Updating License Center
- Log on to QTS or QuTS hero as an administrator.
- Open App Center and then click
.
A search box appears. - Type "License Center" and then press ENTER.
License Center appears in the search results. - Click Update.
A confirmation message appears.
Note: The Update button is not available if your License Center is already up to date. - Click OK.
The application is updated.
附件
致谢: Anh Nguyen Le Quoc (h4niz), Tri, Nguyen Huu (trinh), Quy, Cao Ngoc (quycn) of bl4ckh0l3 from Galaxy One
修订历史:
V1.0 (December 07, 2024) - Published
