Lucene search
PRIOn knowledge basePRION:CVE-2023-23369HistoryNov 03, 2023 - 5:15 p.m.
Command injection
2023-11-0317:15:00
PRIOn knowledge base
www.prio-n.com
1
command injection vulnerability
qnap
os
network execution
multimedia console
qts
media streaming add-on
fixed versions
An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network.
We have already fixed the vulnerability in the following versions:
Multimedia Console 2.1.2 ( 2023/05/04 ) and later
Multimedia Console 1.4.8 ( 2023/05/05 ) and later
QTS 5.1.0.2399 build 20230515 and later
QTS 4.3.6.2441 build 20230621 and later
QTS 4.3.4.2451 build 20230621 and later
QTS 4.3.3.2420 build 20230621 and later
QTS 4.2.6 build 20230621 and later
Media Streaming add-on 500.1.1.2 ( 2023/06/12 ) and later
Media Streaming add-on 500.0.0.11 ( 2023/06/16 ) and later
Related
cve
cve
CVE-2023-23369
2023-11-03 17:15:08
openvas
openvas
QNAP QTS OS Command Injection Vulnerability (QSA-23-35)
2023-11-07 00:00:00
nvd
nvd
CVE-2023-23369
2023-11-03 17:15:08
nessus
nessus
QNAP QTS Command Injection (QSA-23-35)
2023-11-07 00:00:00
cvelist
cvelist
CVE-2023-23369 QTS, Multimedia Console, and Media Streaming add-on
2023-11-03 16:34:40
thn
thn
QNAP Releases Patch for 2 Critical Flaws Threatening Your NAS Devices
2023-11-06 16:55:00
malwarebytes
malwarebytes
QNAP warns about critical vulnerabilities in NAS systems
2023-11-08 11:34:52