Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.3 views

Qnap QTS and QuTS hero Use of Externally-Controlled Format String (CVE-2024-50397)

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to obtain secret data or modify memory. We have already fixed the vulnerability i...

8.8CVSS5.5AI score0.0065EPSS
Exploits0References2
OSV
OSV
added 2024/11/22 4:15 p.m.5 views

CVE-2024-37049

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute code. We have already fixed the vulnerability in the followin...

6.5CVSS6.1AI score0.00803EPSS
Exploits0References1
OSV
OSV
added 2024/11/22 4:15 p.m.3 views

CVE-2024-37042

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

4.9CVSS5.8AI score0.00574EPSS
Exploits0References1
NVD
NVD
added 2024/11/22 4:15 p.m.20 views

CVE-2024-37047

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute code. We have already fixed the vulnerability in the followin...

6.5CVSS0.00803EPSS
Exploits0References1
OSV
OSV
added 2024/11/22 4:15 p.m.6 views

CVE-2024-37047

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute code. We have already fixed the vulnerability in the followin...

6.5CVSS6.1AI score0.00803EPSS
Exploits0References1
NVD
NVD
added 2024/11/22 4:15 p.m.21 views

CVE-2024-37044

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute code. We have already fixed the vulnerability in the followin...

7.2CVSS0.0083EPSS
Exploits0References1
OSV
OSV
added 2024/11/22 4:15 p.m.4 views

CVE-2024-37045

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

4.9CVSS5.8AI score0.00574EPSS
Exploits0References1
CVE
CVE
added 2024/11/22 3:33 p.m.57 views

CVE-2024-37041

CVE-2024-37041 describes a buffer copy without input size checking that affects QNAP QTS and QuTS hero. Specifically, vulnerable in older QTS/QuTS versions prior to the fixed builds, with the issue enabling an attacker who has gained admin access to execute code remotely via a network vector. The...

7.2CVSS7.1AI score0.0083EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/22 3:33 p.m.6 views

CVE-2024-37042 QTS, QuTS hero

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

5.1CVSS7.2AI score0.00574EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/22 3:33 p.m.10 views

CVE-2024-37044 QTS, QuTS hero

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute code. We have already fixed the vulnerability in the followin...

5.1CVSS7.7AI score0.0083EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/22 3:33 p.m.12 views

CVE-2024-37045 QTS, QuTS hero

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

5.1CVSS7.2AI score0.00574EPSS
Exploits0References1
CVE
CVE
added 2024/11/22 3:31 p.m.58 views

CVE-2024-50397

CVE-2024-50397 affects QNAP QTS and QuTS hero: a use of externally-controlled format string vulnerability could allow remote attackers with user access to obtain secret data or modify memory. Affected versions include QTS 5.2.1.2930 build 20241025 and later, and QuTS hero h5.2.1.2929 build 202410...

8.8CVSS6.6AI score0.0065EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/11/22 3:31 p.m.35 views

CVE-2024-50397 QTS, QuTS hero

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to obtain secret data or modify memory. We have already fixed the vulnerability i...

7.7CVSS0.0065EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/22 3:31 p.m.28 views

CVE-2024-50399 QTS, QuTS hero

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. We have already fixed the...

2.1CVSS0.00574EPSS
Exploits0References1
Rows per page
Query Builder