The vulnerability of the QuTS hero, QTS, and QuTScloud operating systems for network devices from Qnap occurs due to the copying of buffers without checking the size of the input data. This allows attackers to execute arbitrary code.

The vulnerability of the QuTS hero, QTS, and QuTScloud network devices from Qnap operating systems is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the QuTS hero, QTS, and QuTScloud operating systems for network devices from Qnap occurs due to the copying of buffers without checking the size of the input data. This allows attackers to execute arbitrary code.

The vulnerability of the QuTS hero, QTS, and QuTScloud network devices from Qnap operating systems is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

CVE-2023-50358

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

CVE-2023-47218

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

Command injection

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

CVE-2023-50358

CVE-2023-50358 is an OS command-injection vulnerability affecting multiple QNAP OS lines, including QTS and QuTS variants. The advisory notes that, if exploited, an attacker could execute commands over the network. QNAP has fixed this vulnerability in specific releases: QTS 5.1.5.2645+ (build 202...

CVE-2023-50358 QTS, QuTS hero, QuTScloud

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

CVE-2023-47218 QTS, QuTS hero, QuTScloud

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

QNAP Operating System Command Injection Vulnerability in Multiple Products

QNAP Systems QuTScloud and others are products of China Weilian Technology QNAP Systems.QNAP Systems QuTScloud is a cloud-optimized version of the QNAP NAS operating system.QNAP Systems QTS is an operating system for entry- to mid-range QNAP NAS use. QNAP Systems QuTS hero is an operating system...

QNAP QuTScloud Multiple OS Command Injection Vulnerabilities (QSA-23-57) - Version Check

QNAP QuTScloud is prone to multiple OS command injection vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

PT-2024-2833

Name of the Vulnerable Software and Affected Versions QTS versions prior to 5.1.5.2645 build 20240116 QuTS hero versions prior to h5.1.5.2647 build 20240118 QuTScloud versions prior to c5.1.5.2651 Description An OS command injection vulnerability exists in QNAP operating system versions due to th...

QNAP QTS / QuTS hero Multiple Vulnerabilities in QTS, QuTS hero and QuTScloud (QSA-23-53)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by multiple vulnerabilities as referenced in the QSA-23-53 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

QNAP QTS / QuTS hero Multiple Vulnerabilities in QTS, QuTS hero, and QuTScloud (QSA-24-02)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by multiple vulnerabilities as referenced in the QSA-24-02 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

QNAP QTS / QuTS hero Multiple Vulnerabilities in QTS, QuTS hero, and QuTScloud (QSA-24-05)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by multiple vulnerabilities as referenced in the QSA-24-05 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices stems from the operation that occurs outside of the buffer in memory. This allows an attacker to execute arbitrary code.

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems regarding network devices from Qnap, related to authentication procedures that allow attackers to compromise the target system.

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices is related to authentication procedures’ flaws. Exploiting this vulnerability allows a malicious actor to compromise the target system remotely...

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices is related to pointer dereferencing errors, which allow attackers to trigger a service failure.

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices is related to pointer swapping errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices arises from copying buffers without checking the size of the input data. This allows attackers to execute arbitrary code.

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices stems from the lack of protective measures for the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices is related to the lack of security measures for SQL query structures. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices arises from copying buffers without checking the size of the input data. This allows attackers to execute arbitrary code.

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...