Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.1 views

Qnap QTS and QuTS hero NULL Pointer Dereference (CVE-2025-53414)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

5.1CVSS5.5AI score0.003EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/01/02 3:17 p.m.20 views

CVE-2025-9110 QTS, QuTS hero

An exposure of sensitive system information to an unauthorized control sphere vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to read application data. We have already fixed the vulnerability in the followin...

6.9CVSS0.00408EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/06 3:53 p.m.5 views

CVE-2025-22481 QTS, QuTS hero

A command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to execute arbitrary commands. We have already fixed the vulnerability in the following versions: QTS...

8.7CVSS8.3AI score0.00924EPSS
Exploits0References1
OSV
OSV
added 2024/12/06 5:15 p.m.3 views

CVE-2024-50393

A command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands. We have already fixed the vulnerability in the following versions: QTS 5.1.9.2954 build 20241120 and...

9.8CVSS6AI score
Exploits0References1
OSV
OSV
added 2024/02/02 4:15 p.m.4 views

CVE-2023-41275

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

7.2CVSS6.1AI score0.00547EPSS
Exploits0References1
OSV
OSV
added 2020/12/10 4:15 a.m.3 views

CVE-2019-7198

This command injection vulnerability allows attackers to execute arbitrary commands in a compromised application. QNAP have already fixed this vulnerability in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 20201031 and later QTS 4.5.1.1456 build 20201015 and later QTS...

9.8CVSS7.5AI score0.02685EPSS
Exploits0References1
Rows per page
Query Builder