← Back

Qstar

qstar

9 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Archive Storage Manager
archive_storage_manager
9 CVEs

CVEs (9)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-51071
1Qstar
1Archive Storage Manager
Jun 3, 2025
Jan 13, 2024
N/A· v4
6.5 MEDIUM· v3
N/A· v2
An access control issue in QStar Archive Solutions Release RELEASE_3-0 Build 7 Patch 0 allows unauthenticated attackers to arbitrarily disable the SMB service on a victim's Qstar instance by executing a specific command...Show more
An access control issue in QStar Archive Solutions Release RELEASE_3-0 Build 7 Patch 0 allows unauthenticated attackers to arbitrarily disable the SMB service on a victim's Qstar instance by executing a specific command in a link.Show less
CVE-2023-51070
1Qstar
1Archive Storage Manager
Nov 21, 2024
Jan 13, 2024
N/A· v4
7.5 HIGH· v3
N/A· v2
An access control issue in QStar Archive Solutions Release RELEASE_3-0 Build 7 Patch 0 allows unauthenticated attackers to arbitrarily adjust sensitive SMB settings on the QStar Server.
CVE-2023-51068
1Qstar
1Archive Storage Manager
Jun 3, 2025
Jan 13, 2024
N/A· v4
5.4 MEDIUM· v3
N/A· v2
An authenticated reflected cross-site scripting (XSS) vulnerability in QStar Archive Solutions Release RELEASE_3-0 Build 7 allows attackers to execute arbitrary javascript on a victim's browser via a crafted link.
CVE-2023-51067
1Qstar
1Archive Storage Manager
Jun 16, 2025
Jan 13, 2024
N/A· v4
6.1 MEDIUM· v3
N/A· v2
An unauthenticated reflected cross-site scripting (XSS) vulnerability in QStar Archive Solutions Release RELEASE_3-0 Build 7 allows attackers to execute arbitrary javascript on a victim's browser via a crafted link.
CVE-2023-51066
1Qstar
1Archive Storage Manager
Jun 6, 2025
Jan 13, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
An authenticated remote code execution vulnerability in QStar Archive Solutions Release RELEASE_3-0 Build 7 Patch 0 allows attackers to arbitrarily execute commands.
CVE-2023-51065
1Qstar
1Archive Storage Manager
Jun 16, 2025
Jan 13, 2024
N/A· v4
7.5 HIGH· v3
N/A· v2
Incorrect access control in QStar Archive Solutions Release RELEASE_3-0 Build 7 Patch 0 allows unauthenticated attackers to obtain system backups and other sensitive information from the QStar Server.
CVE-2023-51064
1Qstar
1Archive Storage Manager
Jun 20, 2025
Jan 13, 2024
N/A· v4
6.1 MEDIUM· v3
N/A· v2
QStar Archive Solutions Release RELEASE_3-0 Build 7 Patch 0 was discovered to contain a DOM Based reflected XSS vulnerability within the component qnme-ajax?method=tree_table.
CVE-2023-51063
1Qstar
1Archive Storage Manager
Jun 3, 2025
Jan 13, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
QStar Archive Solutions Release RELEASE_3-0 Build 7 Patch 0 was discovered to contain a DOM Based Reflected Cross Site Scripting (XSS) vulnerability within the component qnme-ajax?method=tree_level.
CVE-2023-51062
1Qstar
1Archive Storage Manager
Jun 16, 2025
Jan 13, 2024
N/A· v4
5.3 MEDIUM· v3
N/A· v2
An unauthenticated log file read in the component log-smblog-save of QStar Archive Solutions RELEASE_3-0 Build 7 Patch 0 allows attackers to disclose the SMB Log contents via executing a crafted command.