Qnap

Qts

237 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2023-51366

  • EPSS 0.12%
  • Published 06.09.2024 17:15:13
  • Last modified 11.09.2024 13:32:32

A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to read the contents of unexpected files and expose sensitive data via a network. We have already fi...

8.8

CVE-2023-51367

  • EPSS 0.42%
  • Published 06.09.2024 17:15:13
  • Last modified 11.09.2024 13:27:40

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute code via a network. We have already fixed the vulnerability i...

6.5

CVE-2023-51368

  • EPSS 0.18%
  • Published 06.09.2024 17:15:13
  • Last modified 11.09.2024 13:33:30

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to launch a denial-of-service (DoS) attack via a network. We have already fixed the vulner...

5.4

CVE-2024-21897

  • EPSS 0.24%
  • Published 06.09.2024 17:15:13
  • Last modified 11.09.2024 13:34:44

A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerab...

8.8

CVE-2024-21898

  • EPSS 1.69%
  • Published 06.09.2024 17:15:13
  • Last modified 11.09.2024 13:35:21

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in th...

7.2

CVE-2023-39300

  • EPSS 0.24%
  • Published 06.09.2024 17:15:12
  • Last modified 24.09.2024 16:42:02

An OS command injection vulnerability has been reported to affect legacy QTS. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versio...

4.8

CVE-2023-50366

  • EPSS 0.07%
  • Published 06.09.2024 17:15:12
  • Last modified 11.09.2024 13:31:16

A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We have already fixed the...

8.8

CVE-2023-34974

  • EPSS 0.15%
  • Published 06.09.2024 17:15:11
  • Last modified 13.09.2024 21:14:11

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. QuTScloud, QVR, QES are not affected. We have already fixe...

7.2

CVE-2023-34979

  • EPSS 0.29%
  • Published 06.09.2024 17:15:11
  • Last modified 17.09.2024 16:54:20

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerabi...

7.8

CVE-2023-39298

  • EPSS 0.03%
  • Published 06.09.2024 17:15:11
  • Last modified 20.09.2024 16:39:55

A missing authorization vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow local authenticated users to access data or perform actions that they should not be allowed to perfo...