Search

Security ID : QSA-23-44

Vulnerability in Container Station

  • Release date : October 14, 2023

  • CVE identifier : CVE-2023-32976

  • Affected products: Container Station 2.6.x

Severity

Moderate

Status

Resolved

Summary

An OS command injection vulnerability has been reported to affect Container Station. If exploited, the vulnerability could allow authenticated administrators to execute arbitrary commands via a network.

We have already fixed the vulnerability in the following version:

Affected Product Fixed Version
Container Station 2.6.x Container Station 2.6.7.44 and later

Recommendation

To fix the vulnerability, we recommend updating Container Station to the latest version.

Updating Container Station

  1. Log on to QTS or QuTS hero as administrator.
  2. Open the App Center and then click .
    A search box appears.
  3. Type "Container Station" and then press ENTER.
    Container Station appears in the search results.
  4. Click Update.
    A confirmation message appears.
    Note: The Update button is not available if your Container Station is already up to date.
  5. Click OK.
    The application is updated.

Attachment

Acknowledgements: YC of the M1QLin security team

Revision History:
V1.0 (October 14, 2023) - Published

Choisissez une spécification

      En voir davantage Moins

      Ce site est disponible dans d'autres pays/régions :

      open menu
      back to top