Qnap

Quts Hero

184 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2021-28802

  • EPSS 1.06%
  • Published 01.07.2021 02:15:07
  • Last modified 21.11.2024 06:00:13

A command injection vulnerabilities have been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. This issue affects: QNAP Systems Inc. QTS versions prior...

9.8

CVE-2021-28804

  • EPSS 1.06%
  • Published 01.07.2021 02:15:07
  • Last modified 21.11.2024 06:00:14

A command injection vulnerabilities have been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. This issue affects: QNAP Systems Inc. QTS versions prior...

5.4

CVE-2021-28806

  • EPSS 0.25%
  • Published 03.06.2021 03:15:08
  • Last modified 21.11.2024 06:00:14

A DOM-based XSS vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero. If exploited, this vulnerability allows attackers to inject malicious code. This issue affects: QNAP Systems Inc. QTS versions prior to 4.5.3.1652 Build 202...

7.5

CVE-2021-28798

  • EPSS 0.4%
  • Published 21.05.2021 03:15:09
  • Last modified 21.11.2024 06:00:13

A relative path traversal vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero. If exploited, this vulnerability allows attackers to modify files that impact system integrity. QNAP have already fixed this vulnerability in the ...

9.8

CVE-2020-2509

Warning
  • EPSS 74.04%
  • Published 17.04.2021 04:15:11
  • Last modified 13.02.2025 14:22:58

A command injection vulnerability has been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. We have already fixed this vulnerability in the following v...

6.1

CVE-2018-19942

  • EPSS 0.27%
  • Published 16.04.2021 01:15:12
  • Last modified 21.11.2024 03:58:51

A cross-site scripting (XSS) vulnerability has been reported to affect earlier versions of File Station. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following vers...

7.2

CVE-2020-2508

  • EPSS 2.46%
  • Published 11.01.2021 15:15:13
  • Last modified 21.11.2024 05:25:23

A command injection vulnerability has been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. QNAP have already fixed this vulnerability in the following...

7.5

CVE-2018-19941

  • EPSS 0.15%
  • Published 31.12.2020 17:15:12
  • Last modified 21.11.2024 03:58:51

A vulnerability has been reported to affect QNAP NAS. If exploited, this vulnerability allows an attacker to access sensitive information stored in cleartext inside cookies via certain widely-available tools. QNAP have already fixed this vulnerabilit...

8.8

CVE-2020-25847

  • EPSS 3.85%
  • Published 29.12.2020 07:15:13
  • Last modified 21.11.2024 05:18:53

This command injection vulnerability allows attackers to execute arbitrary commands in a compromised application. QNAP have already fixed this vulnerability in the following versions of QTS and QuTS hero.

6.1

CVE-2020-2498

  • EPSS 0.15%
  • Published 10.12.2020 04:15:12
  • Last modified 21.11.2024 05:25:21

If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in certificate configuration. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1...