CVE-2018-19942

Name of the Vulnerable Software and Affected Versions QTS versions prior to 4.5.2.1566 build 20210202 QTS versions prior to 4.5.1.1456 build 20201015 QTS versions prior to 4.3.6.1446 build 20200929 QTS versions prior to 4.3.4.1463 build 20201006 QTS versions prior to 4.3.3.1432 build 20201006 QTS versions prior to 4.2.6 build 20210327 QuTS hero versions prior to h4.5.1.1472 build 20201031 QuTScloud versions prior to c4.5.4.1601 build 20210309 QuTScloud versions prior to c4.5.3.1454 build 20201013

Description A cross-site scripting (XSS) vulnerability has been reported to affect earlier versions of File Station. If exploited, this vulnerability allows remote attackers to inject malicious code.

Recommendations For QTS versions prior to 4.5.2.1566 build 20210202, update to QTS 4.5.2.1566 build 20210202 or later. For QTS versions prior to 4.5.1.1456 build 20201015, update to QTS 4.5.1.1456 build 20201015 or later. For QTS versions prior to 4.3.6.1446 build 20200929, update to QTS 4.3.6.1446 build 20200929 or later. For QTS versions prior to 4.3.4.1463 build 20201006, update to QTS 4.3.4.1463 build 20201006 or later. For QTS versions prior to 4.3.3.1432 build 20201006, update to QTS 4.3.3.1432 build 20201006 or later. For QTS versions prior to 4.2.6 build 20210327, update to QTS 4.2.6 build 20210327 or later. For QuTS hero versions prior to h4.5.1.1472 build 20201031, update to QuTS hero h4.5.1.1472 build 20201031 or later. For QuTScloud versions prior to c4.5.4.1601 build 20210309, update to QuTScloud c4.5.4.1601 build 20210309 or later. For QuTScloud versions prior to c4.5.3.1454 build 20201013, update to QuTScloud c4.5.3.1454 build 20201013 or later.