Lucene search
K

26 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2013-0185

Malware in sbrugna...

5CVSS6.4AI score0.01308EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-0187

Malware in sbrugna...

6.8CVSS6.3AI score0.00619EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 5:15 a.m.8 views

CVE-2023-47565

An OS command injection vulnerability has been found to affect legacy QNAP VioStor NVR models running QVR Firmware 4.x. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QVR Firmwar...

8.8CVSS8.4AI score0.73277EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:11 a.m.16 views

CVE-2013-0142

QNAP VioStor NVR devices with firmware 4.0.3, and the Surveillance Station Pro component in QNAP NAS, have a hardcoded guest account, which allows remote attackers to obtain web-server login access via unspecified vectors...

5CVSS7.2AI score0.01308EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:39 a.m.9 views

CVE-2013-0144

Cross-site request forgery CSRF vulnerability in cgi-bin/createuser.cgi on QNAP VioStor NVR devices with firmware 4.0.3 allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts via a NEW USER action...

6.8CVSS7.6AI score0.00619EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:39 a.m.10 views

CVE-2013-0143

cgi-bin/pingping.cgi on QNAP VioStor NVR devices with firmware 4.0.3, and in the Surveillance Station Pro component in QNAP NAS, allows remote authenticated users to execute arbitrary commands by leveraging guest access and placing shell metacharacters in the query string...

6.5CVSS7.7AI score0.06965EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/01/19 12:0 a.m.10 views

Qnap VioStor Detection

Binary data qnapviostordetect.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/01/19 12:0 a.m.20 views

Qnap VioStor < 5.0.0 Command Injection (CVE-2023-47565)

Binary data qnapviostorCVE-2023-47565.nbin...

8.8CVSS8.4AI score0.73277EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/01/19 12:0 a.m.30 views

Qnap VioStor < 5.0.0 Command Injection (CVE-2023-47565)

The version of Qnap VioStor installed on the remote host is prior to 5.0.0. It is, therefore, affected by an OS command injection vulnerability. If exploited, the vulnerability could allow authenticated users to execute commands. Note that Nessus has not tested for these issues but has instead...

8.8CVSS8.4AI score0.73277EPSS
Exploits0References2
Akamai Blog
Akamai Blog
added 2023/12/14 8:0 a.m.9 views

Actively Exploited Vulnerability in QNAP VioStor NVR: Fixed, Patches Available

...

7.3AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2023/12/08 4:15 p.m.33 views

CVE-2023-47565

An OS command injection vulnerability has been found to affect legacy QNAP VioStor NVR models running QVR Firmware 4.x. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QVR Firmwar...

8.8CVSS7.4AI score0.73277EPSS
In wildExploits0References2Affected Software1
Prion
Prion
added 2023/12/08 4:15 p.m.20 views

Command injection

An OS command injection vulnerability has been found to affect legacy QNAP VioStor NVR models running QVR Firmware 4.x. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QVR Firmwar...

6.5CVSS7.7AI score0.73277EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/08 4:6 p.m.8 views

CVE-2023-47565 Legacy VioStor NVR

An OS command injection vulnerability has been found to affect legacy QNAP VioStor NVR models running QVR Firmware 4.x. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QVR Firmwar...

8CVSS8.8AI score0.73277EPSS
Exploits0References1
CVE
CVE
added 2023/12/08 4:6 p.m.298 views

CVE-2023-47565

CVE-2023-47565 affects legacy QNAP VioStor NVRs prior to QVR Firmware 5.x, where an OS command injection (CWE-78) in QVR Firmware 4.x could let an authenticated user execute commands over the network. Affected component is the VioStor NVR’s QVR firmware (pre-5.x). The vulnerability’s root cause i...

8.8CVSS8.4AI score0.73277EPSS
In wildExploits0References2Affected Software1
Cvelist
Cvelist
added 2023/12/08 4:6 p.m.262 views

CVE-2023-47565 Legacy VioStor NVR

An OS command injection vulnerability has been found to affect legacy QNAP VioStor NVR models running QVR Firmware 4.x. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QVR Firmwar...

8CVSS9AI score0.73277EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/12/07 12:0 a.m.1 views

PT-2023-8130

Name of the Vulnerable Software and Affected Versions QNAP VioStor NVR models running QVR Firmware versions prior to 5.0.0 Description An OS command injection vulnerability has been found to affect legacy QNAP VioStor NVR models. If exploited, the vulnerability could allow authenticated users to...

9CVSS9AI score0.73277EPSS
Exploits0References22
OSV
OSV
added 2021/11/26 2:15 p.m.5 views

CVE-2021-38685

A command injection vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR FW 5.1.6 build 20211109 and later...

9.8CVSS7.4AI score0.01471EPSS
Exploits0References1
OSV
OSV
added 2021/11/26 2:15 p.m.4 views

CVE-2021-38686

An improper authentication vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of QVR: QVR FW 5.1.6 build 20211109 and later...

8.8CVSS7.2AI score0.00942EPSS
Exploits0References1
Prion
Prion
added 2021/11/26 2:15 p.m.13 views

Authentication flaw

An improper authentication vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of QVR: QVR FW 5.1.6 build 20211109 and later...

6.8CVSS8.7AI score0.00942EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/11/26 2:0 p.m.23 views

CVE-2021-38686 Improper Authentication Vulnerability in VioStor

An improper authentication vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of QVR: QVR FW 5.1.6 build 20211109 and later...

8.8CVSS8.9AI score0.00942EPSS
Exploits0References1
Rows per page
Query Builder