CVE-2023-32975

EPSS 0.07%
Published 08.12.2023 16:15:16
Last modified 21.11.2024 08:04:19
Source security@qnapsecurity.com.tw
Teams watchlist Login
Open Login

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.

We have already fixed the vulnerability in the following versions:
QTS 5.0.1.2514 build 20230906 and later
QTS 5.1.2.2533 build 20230926 and later
QuTS hero h5.0.1.2515 build 20230907 and later
QuTS hero h5.1.2.2534 build 20230927 and later

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Qnap ≫ Qts Version5.1.0.2348 Updatebuild_20230325

Qnap ≫ Qts Version5.1.0.2399 Updatebuild_20230515

Qnap ≫ Qts Version5.1.0.2418 Updatebuild_20230603

Qnap ≫ Qts Version5.1.0.2444 Updatebuild_20230629

Qnap ≫ Qts Version5.1.0.2466 Updatebuild_20230721

Qnap ≫ Qts Version5.1.1.2491 Updatebuild_20230815

Qnap ≫ Qts Version5.0.1.2034 Updatebuild_20220515

Qnap ≫ Qts Version5.0.1.2079 Updatebuild_20220629

Qnap ≫ Qts Version5.0.1.2131 Updatebuild_20220820

Qnap ≫ Qts Version5.0.1.2137 Updatebuild_20220826

Qnap ≫ Qts Version5.0.1.2145 Updatebuild_20220903

Qnap ≫ Qts Version5.0.1.2173 Updatebuild_20221001

Qnap ≫ Qts Version5.0.1.2194 Updatebuild_20221022

Qnap ≫ Qts Version5.0.1.2234 Updatebuild_20221201

Qnap ≫ Qts Version5.0.1.2248 Updatebuild_20221215

Qnap ≫ Qts Version5.0.1.2277 Updatebuild_20230112

Qnap ≫ Qts Version5.0.1.2346 Updatebuild_20230322

Qnap ≫ Qts Version5.0.1.2376 Updatebuild_20230421

Qnap ≫ Qts Version5.0.1.2425 Updatebuild_20230609

Qnap ≫ Quts Hero Versionh5.1.0.2409 Updatebuild_20230525

Qnap ≫ Quts Hero Versionh5.1.0.2424 Updatebuild_20230609

Qnap ≫ Quts Hero Versionh5.1.0.2453 Updatebuild_20230708

Qnap ≫ Quts Hero Versionh5.1.0.2466 Updatebuild_20230721

Qnap ≫ Quts Hero Versionh5.1.1.2488 Updatebuild_20230812

Qnap ≫ Quts Hero Versionh5.0.1.2045 Updatebuild_20220526

Qnap ≫ Quts Hero Versionh5.0.1.2192 Updatebuild_20221020

Qnap ≫ Quts Hero Versionh5.0.1.2248 Updatebuild_20221215

Qnap ≫ Quts Hero Versionh5.0.1.2269 Updatebuild_20230104

Qnap ≫ Quts Hero Versionh5.0.1.2277 Updatebuild_20230112

Qnap ≫ Quts Hero Versionh5.0.1.2348 Updatebuild_20230324

Qnap ≫ Quts Hero Versionh5.0.1.2376 Updatebuild_20230421

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.07%	0.22

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.2	1.2	5.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
security@qnapsecurity.com.tw	4.9	1.2	3.6	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

https://www.qnap.com/en/security-advisory/qsa-23-07

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-32975

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-32975

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-32975

EUVD