CVE-2018-0716 vulnerability in QNAP Products
Published on November 30, 2018

Cross-site scripting vulnerability in QTS 4.2.6 build 20180711, QTS 4.3.3: Qsync Central 3.0.2, QTS 4.3.4: Qsync Central 3.0.3, QTS 4.3.5: Qsync Central 3.0.4 and earlier versions could allow remote attackers to inject Javascript code in the compromised application.

NVD

Products Associated with CVE-2018-0716

stack.watch emails you whenever new vulnerabilities are published in QNAP Qts or QNAP Qsync Central. Just hit a watch button to start following.

QNAP Qts

QNAP Qsync Central

Affected Versions

QNAP Qsync Central Version QTS 4.2.6 build 20180711, QTS 4.3.3 Qsync Central 3.0.2, QTS 4.3.4: Qsync Central 3.0.3, QTS 4.3.5 Qsync Central 3.0.4 and earlier versions is affected by CVE-2018-0716

Exploit Probability

EPSS

0.27%

Percentile

50.27%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-0716 vulnerability in QNAP ProductsPublished on November 30, 2018

Products Associated with CVE-2018-0716

Affected Versions

Exploit Probability

CVE-2018-0716 vulnerability in QNAP Products
Published on November 30, 2018