CVE-2024-32769
CVSS 3.1 Score 6.3 of 10 (medium)
Details
Summary
CVE-2024-32769 is a newly identified cross-site scripting (XSS) vulnerability that affects Photo Station. This issue could potentially allow remote attackers, who have already gained user access, to inject malicious code into the application. The exploitation of this vulnerability could result in unintended execution of malicious scripts in unsuspecting users' browsers. Photo Station has released versions 6.4.3 and later, which include the necessary fixes to address this vulnerability. Users are strongly encouraged to update to the latest version as soon as possible to protect against potential attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- QNAP Photo Station
Affected Vendors
- QNAP Systems