CVE-2023-51364 QTS, QuTS hero, QuTScloud

🗓️ 26 Apr 2024 15:01:08Reported by qnapType

Path traversal vulnerability in QNAP OS

Reporter	Title	Published	Views	Family All 14
CNNVD	QNAP Systems 多款产品路径遍历漏洞	26 Apr 202400:00	–	cnnvd
CVE	CVE-2023-51364	26 Apr 202415:01	–	cve
EUVD	EUVD-2023-56085	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in QNAP QTS and QTS Hero	29 Apr 202400:00	–	ncsc
NVD	CVE-2023-51364	26 Apr 202415:15	–	nvd
OpenVAS	QNAP QTS Multiple Vulnerabilities (QSA-24-14)	29 Apr 202400:00	–	openvas
OpenVAS	QNAP QuTS hero Multiple Vulnerabilities (QSA-24-14)	29 Apr 202400:00	–	openvas
OpenVAS	QNAP QuTScloud Multiple Vulnerabilities (QSA-24-14, QSA-24-16)	29 Apr 202400:00	–	openvas
Positive Technologies	PT-2024-14091	26 Apr 202400:00	–	ptsecurity
RedhatCVE	CVE-2023-51364	23 May 202502:17	–	redhatcve

[
  {
    "defaultStatus": "unaffected",
    "product": "QTS",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "5.1.4.2596 build 20231128",
        "status": "affected",
        "version": "5.1.x",
        "versionType": "custom"
      },
      {
        "lessThan": "4.5.4.2627 build 20231225",
        "status": "affected",
        "version": "4.5.x",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "QuTS hero",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "h5.1.3.2578 build 20231110",
        "status": "affected",
        "version": "h5.1.x",
        "versionType": "custom"
      },
      {
        "lessThan": "h4.5.4.2626 build 20231225",
        "status": "affected",
        "version": "h4.5.x",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "QuTScloud",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "c5.1.5.2651",
        "status": "affected",
        "version": "c5.x.x",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
qnap	www.qnap.com/en/security-advisory/qsa-24-14

26 Apr 2024 15:01Current

8.5High risk

Vulners AI Score8.5

CVSS 3.18.7

EPSS0.4158

CWE-22