10 matches found
Qnap QTS and QuTS hero NULL Pointer Dereference (CVE-2025-52853)
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...
EUVD-2017-16635
Malware in sbrugna...
EUVD-2018-1521
Malware in sbrugna...
QNAP QTS Heap-Based Buffer Overflow Vulnerability (QSA-21-02, Baron Samedit)
QNAP QTS is prone to a heap-based buffer overflow vulnerability in sudo dubbed SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
QNAP QTS SSRF Vulnerability (QSA-24-53)
QNAP QTS is prone to a server-side request forgery SSRF vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qts";...
QNAP QTS Out-of-bounds Write Vulnerability (QSA-24-52)
QNAP QTS is prone to an out-of-bounds write vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qts"; ifdescripti...
QNAP QTS Information Disclosure Vulnerability (QSA-25-03)
QNAP QTS is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qts";...
QNAP QTS DoS Vulnerability (QSA-23-09)
QNAP QTS is prone to denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qts"; ifdescriptio...
QNAP Systems QTS 和QuTS hero 安全漏洞
QNAP Systems QTS and QNAP Systems QuTS hero are both products of China's Weilian Technology QNAP Systems.QNAP Systems QTS is an operating system used by entry to mid-level QNAP NAS.QNAP Systems QuTS hero is an operating system. A security vulnerability exists in QNAP Systems QTS version 5.1.6.272...
CVE-2017-13072
The CVE-2017-13072 entry describes a Cross-site scripting (XSS) vulnerability in QNAP QTS App Center affecting QTS 4.2.6 (build 20171208), 4.3.3 (build 20171213), 4.3.4 (build 20171223), and earlier versions. The underlying issue is an XSS flaw that could allow remote attackers to inject Javascri...