Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.1
CVSSv3

CVE-2018-19942

Published: 16/04/2021 Updated: 21/06/2021
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Quts Hero

Vulnerability Summary

A cross-site scripting (XSS) vulnerability has been reported to affect earlier versions of File Station. If exploited, this vulnerability allows remote malicious users to inject malicious code. We have already fixed this vulnerability in the following versions: QTS 4.5.2.1566 build 20210202 (and later) QTS 4.5.1.1456 build 20201015 (and later) QTS 4.3.6.1446 build 20200929 (and later) QTS 4.3.4.1463 build 20201006 (and later) QTS 4.3.3.1432 build 20201006 (and later) QTS 4.2.6 build 20210327 (and later) QuTS hero h4.5.1.1472 build 20201031 (and later) QuTScloud c4.5.4.1601 build 20210309 (and later) QuTScloud c4.5.3.1454 build 20201013 (and later)

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

qnap quts hero

qnap quts hero h4.5.1

qnap qts

qnap qts 4.2.6

qnap qts 4.3.3

qnap qts 4.3.3.0095

qnap qts 4.3.3.0096

qnap qts 4.3.3.0136

qnap qts 4.3.3.0154

qnap qts 4.3.3.0174

qnap qts 4.3.3.0188

qnap qts 4.3.3.0210

qnap qts 4.3.3.0229

qnap qts 4.3.3.0238

qnap qts 4.3.3.0262

qnap qts 4.3.3.0299

qnap qts 4.3.3.0351

qnap qts 4.3.3.0353

qnap qts 4.3.3.0361

qnap qts 4.3.3.0369

qnap qts 4.3.3.0378

qnap qts 4.3.3.0396

qnap qts 4.3.3.0404

qnap qts 4.3.3.0416

qnap qts 4.3.3.0418

qnap qts 4.3.3.0448

qnap qts 4.3.3.0514

qnap qts 4.3.3.0546

qnap qts 4.3.3.0570

qnap qts 4.3.3.0868

qnap qts 4.3.3.0998

qnap qts 4.3.3.1051

qnap qts 4.3.3.1098

qnap qts 4.3.3.1161

qnap qts 4.3.3.1252

qnap qts 4.3.3.1315

qnap qts 4.3.3.1386

qnap qts 4.3.4

qnap qts 4.3.4.0358

qnap qts 4.3.4.0370

qnap qts 4.3.4.0372

qnap qts 4.3.4.0374

qnap qts 4.3.4.0387

qnap qts 4.3.4.0411

qnap qts 4.3.4.0416

qnap qts 4.3.4.0427

qnap qts 4.3.4.0434

qnap qts 4.3.4.0435

qnap qts 4.3.4.0451

qnap qts 4.3.4.0483

qnap qts 4.3.4.0486

qnap qts 4.3.4.0506

qnap qts 4.3.4.0516

qnap qts 4.3.4.0526

qnap qts 4.3.4.0551

qnap qts 4.3.4.0557

qnap qts 4.3.4.0561

qnap qts 4.3.4.0569

qnap qts 4.3.4.0593

qnap qts 4.3.4.0597

qnap qts 4.3.4.0604

qnap qts 4.3.4.0899

qnap qts 4.3.4.1029

qnap qts 4.3.4.1082

qnap qts 4.3.4.1190

qnap qts 4.3.4.1282

qnap qts 4.3.4.1368

qnap qts 4.3.4.1417

qnap qts 4.3.6

qnap qts 4.3.6.0895

qnap qts 4.3.6.0907

qnap qts 4.3.6.0923

qnap qts 4.3.6.0944

qnap qts 4.3.6.0959

qnap qts 4.3.6.0979

qnap qts 4.3.6.0993

qnap qts 4.3.6.1013

qnap qts 4.3.6.1033

qnap qts 4.3.6.1070

qnap qts 4.3.6.1154

qnap qts 4.3.6.1218

qnap qts 4.3.6.1263

qnap qts 4.3.6.1286

qnap qts 4.3.6.1333

qnap qts 4.3.6.1411

qnap qts 4.5.1

qnap qts 4.5.2

qnap qutscloud

qnap qutscloud c4.5.3

qnap qutscloud c4.5.4

References

CWE-79https://www.qnap.com/zh-tw/security-advisory/qsa-21-04https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook