CVE-2021-38688
HIGH WAF: Low
CVSS 7.5
Published: 2021-12-29
CWE-287
An improper authentication vulnerability has been reported to affect Android App Qfile. If exploited, this vulnerability allows attackers to compromise app and access information We have already fixed this vulnerability in the following versions of Qfile: Qfile 3.0.0.1105 and later
WAF Coverage Analysis
Improper Authentication
Low WAF Coverage
OWASP: A07:2021 Identification and Authentication Failures
Affected Software
| Vendor | Product | Version |
|---|---|---|
| qnap | qfile | up to 3.0.0.1105 |
References
- www.qnap.com (Vendor Advisory)