CVE-2020-2498
- EPSS 0.15%
- Published 10.12.2020 04:15:12
- Last modified 21.11.2024 05:25:21
If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in certificate configuration. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1...
CVE-2019-7198
- EPSS 3.07%
- Published 10.12.2020 04:15:11
- Last modified 21.11.2024 04:47:45
This command injection vulnerability allows attackers to execute arbitrary commands in a compromised application. QNAP have already fixed this vulnerability in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 20201031 and late...
CVE-2020-2495
- EPSS 0.27%
- Published 10.12.2020 04:15:11
- Last modified 21.11.2024 05:25:20
If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in File Station. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 202...
CVE-2020-2496
- EPSS 0.27%
- Published 10.12.2020 04:15:11
- Last modified 21.11.2024 05:25:20
If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in File Station. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 202...
CVE-2020-2497
- EPSS 0.27%
- Published 10.12.2020 04:15:11
- Last modified 21.11.2024 05:25:20
If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in System Connection Logs. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472...
CVE-2020-2492
- EPSS 2.62%
- Published 16.11.2020 01:15:13
- Last modified 21.11.2024 05:25:19
If exploited, the command injection vulnerability could allow remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. QTS versions prior to 4.4.3.1421 on build 20200907.
CVE-2020-2490
- EPSS 2.31%
- Published 16.11.2020 01:15:12
- Last modified 21.11.2024 05:25:19
If exploited, the command injection vulnerability could allow remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. QTS versions prior to 4.4.3.1421 on build 20200907.
CVE-2018-19943
- EPSS 6.46%
- Published 28.10.2020 18:15:12
- Last modified 21.11.2024 03:58:51
If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code. QNAP has already fixed these issues in the following QTS versions. QTS 4.4.2.1270 build 20200410 and later QTS 4.4.1.1261 build 20200330 and ...
CVE-2018-19949
- EPSS 49.21%
- Published 28.10.2020 18:15:12
- Last modified 12.03.2025 20:37:57
If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. QNAP has already fixed the issue in the following QTS versions. QTS 4.4.2.1231 on build 20200302; QTS 4.4.1.1201 on build 20200130; QTS 4.3.6.1...
CVE-2018-19953
- EPSS 34.49%
- Published 28.10.2020 18:15:12
- Last modified 12.03.2025 20:56:16
If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code. QNAP has already fixed the issue in the following QTS versions. QTS 4.4.2.1231 on build 20200302; QTS 4.4.1.1201 on build 20200130; QTS 4.3.6...