Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2023-39300

🗓️ 06 Sep 2024 16:27:04Reported by qnapType 
cve
 cve🔗 web.nvd.nist.gov👁 68 Views

Legacy QTS OS command injection vulnerability CVE-2023-39300 fixed in specified version

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
CNNVD		QNAP Systems QTS 操作系统命令注入漏洞
6 Sep 202400:00
cnnvd
Cvelist		CVE-2023-39300 QTS
6 Sep 202416:27
cvelist
EUVD		EUVD-2023-43032
3 Oct 202520:07
euvd
NVD		CVE-2023-39300
6 Sep 202417:15
nvd
OpenVAS		QNAP QTS OS Command Injection Vulnerability (QSA-24-26)
4 Jul 202400:00
openvas
Positive Technologies		PT-2023-9452 · Qnap · Qts
15 Aug 202300:00
ptsecurity
Tenable Nessus		Qnap QTS OS Command Injection (CVE-2023-39300)
16 Oct 202400:00
nessus
Vulnrichment		CVE-2023-39300 QTS
6 Sep 202416:27
vulnrichment
NVD
Node
qnapqtsMatch4.3.6.0895build_20190328
OR
qnapqtsMatch4.3.6.0907build_20190409
OR
qnapqtsMatch4.3.6.0923build_20190425
OR
qnapqtsMatch4.3.6.0944build_20190516
OR
qnapqtsMatch4.3.6.0959build_20190531
OR
qnapqtsMatch4.3.6.0979build_20190620
OR
qnapqtsMatch4.3.6.0993build_20190704
OR
qnapqtsMatch4.3.6.1013build_20190724
OR
qnapqtsMatch4.3.6.1033build_20190813
OR
qnapqtsMatch4.3.6.1070build_20190919
OR
qnapqtsMatch4.3.6.1154build_20191212
OR
qnapqtsMatch4.3.6.1218build_20200214
OR
qnapqtsMatch4.3.6.1263build_20200330
OR
qnapqtsMatch4.3.6.1286build_20200422
OR
qnapqtsMatch4.3.6.1333build_20200608
OR
qnapqtsMatch4.3.6.1411build_20200825
OR
qnapqtsMatch4.3.6.1446build_20200929
OR
qnapqtsMatch4.3.6.1620build_20210322
OR
qnapqtsMatch4.3.6.1663build_20210504
OR
qnapqtsMatch4.3.6.1711build_20210621
OR
qnapqtsMatch4.3.6.1750build_20210730
OR
qnapqtsMatch4.3.6.1831build_20211019
OR
qnapqtsMatch4.3.6.1907build_20220103
OR
qnapqtsMatch4.3.6.1965build_20220302
OR
qnapqtsMatch4.3.6.2050build_20220526
OR
qnapqtsMatch4.3.6.2232build_20221124
OR
qnapqtsMatch4.3.6.2441build_20230621
OR
qnapqtsMatch4.3.6.2665build_20240131
Node
qnapqtsMatch4.3.4.0899build_20190322
OR
qnapqtsMatch4.3.4.1029build_20190730
OR
qnapqtsMatch4.3.4.1082build_20190921
OR
qnapqtsMatch4.3.4.1190build_20200107
OR
qnapqtsMatch4.3.4.1282build_20200408
OR
qnapqtsMatch4.3.4.1368build_20200703
OR
qnapqtsMatch4.3.4.1417build_20200821
OR
qnapqtsMatch4.3.4.1463build_20201006
OR
qnapqtsMatch4.3.4.1632build_20210324
OR
qnapqtsMatch4.3.4.1652build_20210413
OR
qnapqtsMatch4.3.4.1976build_20220303
OR
qnapqtsMatch4.3.4.2107build_20220712
OR
qnapqtsMatch4.3.4.2242build_20221124
OR
qnapqtsMatch4.3.4.2451build_20230621
OR
qnapqtsMatch4.3.4.2675build_20240131
Node
qnapqtsMatch4.3.3.0174build_20170503
OR
qnapqtsMatch4.3.3.0868build_20190322
OR
qnapqtsMatch4.3.3.0998build_20190730
OR
qnapqtsMatch4.3.3.1051build_20190921
OR
qnapqtsMatch4.3.3.1098build_20191107
OR
qnapqtsMatch4.3.3.1161build_20200109
OR
qnapqtsMatch4.3.3.1252build_20200409
OR
qnapqtsMatch4.3.3.1315build_20200611
OR
qnapqtsMatch4.3.3.1386build_20200821
OR
qnapqtsMatch4.3.3.1432build_20201006
OR
qnapqtsMatch4.3.3.1624build_20210416
OR
qnapqtsMatch4.3.3.1677build_20210608
OR
qnapqtsMatch4.3.3.1693build_20210624
OR
qnapqtsMatch4.3.3.1799build_20211008
OR
qnapqtsMatch4.3.3.1864build_20211212
OR
qnapqtsMatch4.3.3.1945build_20220303
OR
qnapqtsMatch4.3.3.2057build_20220623
OR
qnapqtsMatch4.3.3.2211build_20221124
OR
qnapqtsMatch4.3.3.2420build_20230621
OR
qnapqtsMatch4.3.3.2644build_20240131
Node
qnapqtsMatch4.2.6build_20170517
OR
qnapqtsMatch4.2.6build_20190322
OR
qnapqtsMatch4.2.6build_20190730
OR
qnapqtsMatch4.2.6build_20190921
OR
qnapqtsMatch4.2.6build_20191107
OR
qnapqtsMatch4.2.6build_20200109
OR
qnapqtsMatch4.2.6build_20200421
OR
qnapqtsMatch4.2.6build_20200611
OR
qnapqtsMatch4.2.6build_20200821
OR
qnapqtsMatch4.2.6build_20210327
OR
qnapqtsMatch4.2.6build_20211215
OR
qnapqtsMatch4.2.6build_20220304
OR
qnapqtsMatch4.2.6build_20220623
OR
qnapqtsMatch4.2.6build_20221028
OR
qnapqtsMatch4.2.6build_20230621
OR
qnapqtsMatch4.2.6build_20240131
[
  {
    "defaultStatus": "unaffected",
    "product": "QTS",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "4.3.6.2805 build 20240619",
        "status": "affected",
        "version": "4.3.6",
        "versionType": "custom"
      },
      {
        "lessThan": "4.3.4.2814 build 20240618",
        "status": "affected",
        "version": "4.3.4",
        "versionType": "custom"
      },
      {
        "lessThan": "4.3.3.2784 build 20240619",
        "status": "affected",
        "version": "4.3.3",
        "versionType": "custom"
      },
      {
        "lessThan": "4.2.6 build 20240618",
        "status": "affected",
        "version": "4.2.6",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "QTS",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "status": "unaffected",
        "version": "5.x"
      },
      {
        "status": "unaffected",
        "version": "4.5.x"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "QuTS hero",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "status": "unaffected",
        "version": "h5.x"
      },
      {
        "status": "unaffected",
        "version": "h4.5.x"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "QuTScloud",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "status": "unaffected",
        "version": "c5.x"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
24 Sep 2024 16:42Current
7.2High risk
Vulners AI Score7.2
CVSS 3.17.2
EPSS0.00204
SSVC
CWE-78
os command injectionlegacy qtscve-2023-39300vulnerabilityauthenticated administratorsnetwork execution
68