Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2024-37046

🗓️ 22 Nov 2024 15:33:09Reported by qnapType 
cve
 cve🔗 web.nvd.nist.gov👁 47 Views

A path traversal vulnerability in QNAP operating systems allows remote attackers to access unexpected files and sensitive dat

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
CNNVD		QNAP Systems QTS和QNAP Systems QuTS hero 路径遍历漏洞
22 Nov 202400:00
cnnvd
Cvelist		CVE-2024-37046 QTS, QuTS hero
22 Nov 202415:33
cvelist
EUVD		EUVD-2024-36957
3 Oct 202520:07
euvd
NVD		CVE-2024-37046
22 Nov 202416:15
nvd
OpenVAS		QNAP QTS Multiple Vulnerabilities (QSA-24-43)
26 Nov 202400:00
openvas
OpenVAS		QNAP QuTS hero Multiple Vulnerabilities (QSA-24-43)
26 Nov 202400:00
openvas
Positive Technologies		PT-2024-27261 · Qnap · Quts Hero +1
22 Nov 202400:00
ptsecurity
RedhatCVE		CVE-2024-37046
23 May 202506:41
redhatcve
Tenable Nessus		Qnap QTS and QuTS hero Improper Limitation of a Pathname to a Restricted Directory (CVE-2024-37046)
22 Dec 202500:00
nessus
Vulnrichment		CVE-2024-37046 QTS, QuTS hero
22 Nov 202415:33
vulnrichment
Rows per page
NVD
Node
qnapqtsMatch5.2.0.2737build_20240417
OR
qnapqtsMatch5.2.0.2744build_20240424
OR
qnapqtsMatch5.2.0.2782build_20240601
OR
qnapqtsMatch5.2.0.2802build_20240620
OR
qnapqtsMatch5.2.0.2823build_20240711
OR
qnapqtsMatch5.2.0.2851build_20240808
OR
qnapqtsMatch5.2.0.2860build_20240817
Node
qnapquts_heroMatchh5.2.0.2737build_20240417
OR
qnapquts_heroMatchh5.2.0.2782build_20240601
OR
qnapquts_heroMatchh5.2.0.2789build_20240607
OR
qnapquts_heroMatchh5.2.0.2802build_20240620
OR
qnapquts_heroMatchh5.2.0.2823build_20240711
OR
qnapquts_heroMatchh5.2.0.2851build_20240808
OR
qnapquts_heroMatchh5.2.0.2860build_20240817
[
  {
    "defaultStatus": "unaffected",
    "product": "QTS",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "5.2.1.2930 build 20241025",
        "status": "affected",
        "version": "5.2.x",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "QuTS hero",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "h5.2.1.2929 build 20241025",
        "status": "affected",
        "version": "h5.2.x",
        "versionType": "custom"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
23 Sep 2025 13:35Current
6.4Medium risk
Vulners AI Score6.4
CVSS 3.14.9
CVSS 42.1
EPSS0.00099
SSVC
CWE-22
path traversal vulnerabilityqnapremote attackersadministrator accesssensitive datasecurity fix
47