Security ID : QSA-24-46

Vulnerability in QuLog Center


  • Release date : November 23, 2024

  • CVE identifier : CVE-2024-48862

  • Affected products: QuLog Center 1.7.x and 1.8.x

Severity

Important

Status

Resolved


Summary

A link following vulnerability has been reported to affect QuLog Center. If exploited, the vulnerability could allow remote attackers to traverse the file system to unintended locations.

  

We have already fixed the vulnerability in the following versions:

Affected Product Fixed Version
QuLog Center 1.7.x QuLog Center 1.7.0.831 (2024/10/15) and later
QuLog Center 1.8.x QuLog Center 1.8.0.888 (2024/10/15) and later

Recommendation

To fix the vulnerability, we recommend updating QuLog Center to the latest version.

Updating QuLog Center

  1. Log on to QTS or QuTS hero as an administrator.
  2. Open App Center and then click .
    A search box appears.
  3. Type "QuLog Center" and then press ENTER.
    QuLog Center appears in the search results.
  4. Click Update.
    A confirmation message appears.
    Note: The Update button is not available if your QuLog Center is already up to date.
  5. Click OK.
    The application is updated.

  

Attachment

Acknowledgements: Dinh Ho Anh Khoa

Revision History:
V1.0 (November 23, 2024) - Published

Choose specification

      Show more Less

      Choose Your Country or Region

      open menu
      back to top