CVE-2020-2505
2.3
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Summary
If exploited, this vulnerability could allow attackers to gain sensitive information via generation of error messages. QNAP has already fixed these issues in QES 2.1.1 Build 20201006 and later.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| QNAP Systems Inc. | QES | unspecified < 2.1.1 | affected |
Weaknesses
- CWE-209: CWE-209 Information Exposure Through an Error Message
- CWE-755: CWE-755 Improper Handling of Exceptional Conditions
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.