Primary

Context

Quanta Computer QOCA aim AI Medical Cloud Platform Path Traversal Vulnerability

Vulnerability

A path traversal vulnerability has been identified in the QOCA aim AI Medical Cloud Platform developed by Quanta Computer. This vulnerability allows authenticated remote attackers to read folder names under a specified path by exploiting an absolute path traversal flaw. The issue affects QOCA aim versions 2.7.5 and earlier.

Impact

Exploitation of this vulnerability could lead to unauthorized access to directory names, potentially allowing attackers to navigate the file system and access sensitive information.

Remediation

Users are advised to update to QOCA aim version 2.7.6 or later.

Added: Jan 5, 2026, 8:19 AM

Updated: Jan 5, 2026, 8:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.0

exploitability

5.2

remediation

7.7

relevance

1.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.0

exploitability

5.2

remediation

7.7

relevance

1.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Quanta Computer QOCA aim AI Medical Cloud Platform Path Traversal Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating