Lucene search
K

150 matches found

CVE
CVE
added 2023/03/29 12:0 a.m.75 views

CVE-2022-27597

CVE-2022-27597 affects QNAP QTS, QuTS hero, QuTScloud, and QVP (QVR Pro appliances). A out-of-bounds read vulnerability could allow remote authenticated administrators to obtain secret values. Affected components are not detailed beyond the OS families; root cause is described as an out-of-bounds...

2.7CVSS3.2AI score0.00658EPSS
Exploits0References1Affected Software4
Cvelist
Cvelist
added 2023/03/29 12:0 a.m.32 views

CVE-2022-27597 QTS, QuTS hero, QuTScloud, QVP (QVR Pro appliances)

A vulnerability has been reported to affect QNAP operating systems. If exploited, the out-of-bounds read vulnerability allows remote authenticated administrators to get secret values. The vulnerability affects the following QNAP operating systems: QTS, QuTS hero, QuTScloud, QVP QVR Pro appliances...

2.7CVSS5.6AI score0.00658EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/03/29 12:0 a.m.7 views

PT-2023-2148 · Qnap · Qnap Qts +3

Name of the Vulnerable Software and Affected Versions: QNAP QTS versions prior to 5.0.1.2346 build 20230322 QNAP QuTS hero versions prior to h5.0.1.2348 build 20230324 QNAP QuTScloud affected versions not specified QNAP QVP QVR Pro appliances affected versions not specified Description: A...

3.3CVSS3.4AI score0.00658EPSS
Exploits0References6
CVE
CVE
added 2023/03/29 12:0 a.m.72 views

CVE-2022-27598

CVE-2022-27598 affects QNAP QTS, QuTS hero, QuTScloud, and QVP (QVR Pro appliances). It is an out-of-bounds read that could allow remote authenticated administrators to obtain secret values. Fixed in QTS 5.0.1.2346 build 20230322+ and QuTS hero h5.0.1.2348 build 20230324+. Connected sources confi...

2.7CVSS3.2AI score0.00658EPSS
Exploits0References1Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/10/20 12:0 a.m.7 views

The vulnerability of the QNAP QVR Elite, QVR Pro, and the QVR Guard application for managing emergency switching in video surveillance systems lies in the recording of data beyond the buffer in memory, allowing a intruder to execute arbitrary code.

The vulnerability of QNAP QVR Elite, QVR Pro, and the QVR Guard application, which is used for managing emergency switching of video surveillance systems, lies in data recording beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code...

8.1CVSS8.4AI score0.01296EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/10/20 12:0 a.m.8 views

The vulnerability of the QNAP QVR Elite, QVR Pro, and the QVR Guard application for managing emergency switching in video surveillance systems lies in the recording of data beyond the buffer in memory, allowing a intruder to execute arbitrary code.

The vulnerability of QNAP QVR Elite, QVR Pro, and the QVR Guard emergency switching management application relates to data recording beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

8.1CVSS8.4AI score0.01296EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2022/10/20 12:0 a.m.7 views

The vulnerability of the QNAP QVR Elite, QVR Pro, and the QVR Guard application for managing emergency switching in video surveillance systems lies in the recording of data beyond the buffer in memory, allowing a intruder to execute arbitrary code.

The vulnerability of QNAP QVR Elite, QVR Pro, and the QVR Guard application, which is used for managing emergency switching of video surveillance systems, lies in data recording beyond the buffer in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code...

8.1CVSS8.4AI score0.01296EPSS
Exploits0References3
CNVD
CNVD
added 2022/05/30 12:0 a.m.39 views

Buffer Overflow Vulnerability in Multiple Qualcomm Snapdragon Products

Qualcomm chips are chips from Qualcomm, Inc. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc., and is often manufactured on the surface of semiconductor wafers. Several Qualcomm Snapdragon products are vulnerable to a buffer overflow. The vulnerability...

3.6CVSS3.2AI score0.00146EPSS
Exploits0
The Hacker News
The Hacker News
added 2022/05/07 3:20 a.m.88 views

QNAP Releases Firmware Patches for 9 New Flaws Affecting NAS Devices

QNAP, Taiwanese maker of network-attached storage NAS devices, on Friday released security updates to patch nine security weaknesses, including a critical issue that could be exploited to take over an affected system. "A vulnerability has been reported to affect QNAP VS Series NVR running QVR,"...

0.6AI score0.01588EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/05/06 12:0 a.m.2 views

CVE-2022-27588

We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401 and later...

9.8CVSS5.9AI score0.01271EPSS
Exploits0References2
OSV
OSV
added 2022/05/05 5:15 p.m.6 views

CVE-2022-27588

We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401 and later...

9.8CVSS5.8AI score0.01271EPSS
Exploits0References1
NVD
NVD
added 2022/05/05 5:15 p.m.16 views

CVE-2022-27588

We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401 and later...

9.8CVSS0.01271EPSS
Exploits0References1
Prion
Prion
added 2022/05/05 5:15 p.m.16 views

Design/Logic Flaw

We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401 and later...

7.5CVSS9.4AI score0.01271EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/05/05 5:15 p.m.20 views

Path traversal

A path traversal vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero, QTS, QVR Pro Appliance. If exploited, this vulnerability allows attackers to read the contents of unexpected files and expose sensitive data. We have already fixed this vulnerability in the...

5CVSS5.2AI score0.00888EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2022/05/05 4:50 p.m.18 views

CVE-2022-27588 Vulnerability in QVR

We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401 and later...

9.8CVSS9.6AI score0.01271EPSS
Exploits0References1
CVE
CVE
added 2022/05/05 4:50 p.m.116 views

CVE-2022-27588

CVE-2022-27588 affects QNAP QVR (VS Series NVR) with a command injection vulnerability. Affected software versions include pre-5.1.6 build 20220401; the issue allows remote arbitrary command execution without authentication. The vulnerability has been fixed in QVR 5.1.6 build 20220401 and later. ...

9.8CVSS9.6AI score0.01271EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/05/05 4:50 p.m.112 views

CVE-2021-38693

CVE-2021-38693 is a path-traversal vulnerability affecting QNAP devices running QuTScloud, QuTS hero, QTS, and QVR Pro Appliance. The issue is triggered via path traversal in thttpd, enabling read access to potentially sensitive files. Public references in the provided documents confirm remediati...

5.3CVSS5.1AI score0.00888EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2022/05/05 4:50 p.m.32 views

CVE-2021-38693 Path Traversal in thttpd

A path traversal vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero, QTS, QVR Pro Appliance. If exploited, this vulnerability allows attackers to read the contents of unexpected files and expose sensitive data. We have already fixed this vulnerability in the...

5.3CVSS5.3AI score0.00888EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/03/21 12:0 a.m.5 views

PT-2022-7021 · Qnap · Qvr Pro Client

Name of the Vulnerable Software and Affected Versions: QVR Pro Client versions prior to 2.3.0.0420 Description: The issue is related to insufficient protection of registration data in QVR Pro Client, which may allow an attacker to gain unauthorized access to protected information. An insertion of...

6.7CVSS4.5AI score0.00169EPSS
Exploits0References7
CNVD
CNVD
added 2022/01/18 12:0 a.m.12 views

Qnap Qvr buffer overflow vulnerability

Qnap Qvr is a Qnap monitoring system control center from China Welllink Technology Qnap, Inc. A buffer overflow vulnerability exists in several QVR products, which stems from a stack buffer overflow vulnerability that affects QNAP devices running QVR Elite, QVR Pro, and QVR Guard. An attacker cou...

9.8CVSS4.1AI score0.01296EPSS
Exploits0References1
Rows per page
Query Builder