Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.15 views

Qnap QTS NULL Pointer Dereference (CVE-2023-41274)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to launch a denial-of-service DoS attack via a network. We have already fixed the vulnerability in the following...

5.5CVSS5.3AI score0.00437EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.17 views

Qnap QTS Classic Buffer Overflow (CVE-2023-41280)

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

7.2CVSS7.5AI score0.0058EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/04/29 12:0 a.m.21 views

QNAP QuTScloud Multiple Vulnerabilities (QSA-24-14, QSA-24-16)

QNAP QuTScloud is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qutscloud"; ifdescripti...

8.7CVSS7.5AI score0.4158EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/26 12:0 a.m.6 views

PT-2024-21662 · Qnap · Qnap Qts +2

Name of the Vulnerable Software and Affected Versions: QNAP QTS versions prior to 5.1.3.2578 build 20231110 QNAP QTS versions prior to 4.5.4.2627 build 20231225 QNAP QuTS hero h versions prior to h5.1.3.2578 build 20231110 QNAP QuTS hero h versions prior to h4.5.4.2626 build 20231225 QNAP QuTSclo...

7.5CVSS8.1AI score0.01436EPSS
Exploits0References16
Prion
Prion
added 2024/03/08 5:15 p.m.19 views

Sql injection

An injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578 build 20231110 and...

4CVSS7.8AI score0.09409EPSS
Exploits0References1Affected Software3
Prion
Prion
added 2024/02/13 3:15 a.m.22 views

Command injection

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

4.3CVSS8AI score0.89157EPSS
Exploits4References2
Positive Technologies
Positive Technologies
added 2024/02/12 12:0 a.m.6 views

PT-2024-2833

Name of the Vulnerable Software and Affected Versions QTS versions prior to 5.1.5.2645 build 20240116 QuTS hero versions prior to h5.1.5.2647 build 20240118 QuTScloud versions prior to c5.1.5.2651 Description An OS command injection vulnerability exists in QNAP operating system versions due to th...

8.3CVSS7.4AI score0.89157EPSS
Exploits4References32
NVD
NVD
added 2024/02/02 4:15 p.m.16 views

CVE-2023-45036

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

7.2CVSS5.4AI score0.0058EPSS
Exploits0References1
NVD
NVD
added 2024/02/02 4:15 p.m.28 views

CVE-2023-45028

An uncontrolled resource consumption vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to launch a denial-of-service DoS attack via a network. We have already fixed the vulnerability in the...

5.5CVSS5.3AI score0.00437EPSS
Exploits0References1
NVD
NVD
added 2024/02/02 4:15 p.m.26 views

CVE-2023-41280

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

7.2CVSS6.3AI score0.0058EPSS
Exploits0References1
OSV
OSV
added 2024/02/02 4:15 p.m.4 views

CVE-2023-41278

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

7.2CVSS6.1AI score0.00547EPSS
Exploits0References1
OSV
OSV
added 2024/02/02 4:15 p.m.2 views

CVE-2023-41279

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

7.2CVSS6.1AI score
Exploits0References1
NVD
NVD
added 2024/02/02 4:15 p.m.23 views

CVE-2023-41274

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to launch a denial-of-service DoS attack via a network. We have already fixed the vulnerability in the following...

5.5CVSS5.5AI score0.00437EPSS
Exploits0References1
Prion
Prion
added 2024/02/02 4:15 p.m.20 views

Null pointer dereference

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to launch a denial-of-service DoS attack via a network. We have already fixed the vulnerability in the following...

3.3CVSS6.9AI score0.00437EPSS
Exploits0References1Affected Software3
Prion
Prion
added 2024/02/02 4:15 p.m.15 views

Command injection

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.4.2596...

5.8CVSS7.9AI score0.00968EPSS
Exploits0References1Affected Software3
CNNVD
CNNVD
added 2024/02/02 12:0 a.m.5 views

QNAP Multiple Product Security Vulnerabilities

QNAP Systems QuTScloud and others are products of China Weilian Technology QNAP Systems.QNAP Systems QuTScloud is a cloud-optimized version of the QNAP NAS operating system.QNAP Systems QTS is an operating system for entry- to mid-range QNAP NAS use. QNAP Systems QuTS hero is an operating system....

7.2CVSS7.3AI score0.0058EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/27 12:0 a.m.3 views

PT-2023-8505 · Qnap · Quts Hero +2

Name of the Vulnerable Software and Affected Versions: QTS versions prior to 5.1.3.2578 build 20231110 QuTS hero versions prior to h5.1.3.2578 build 20231110 QuTScloud versions prior to c5.1.5.2651 Description: The issue is related to improper authentication procedures in QNAP operating systems,...

10CVSS9.2AI score0.00469EPSS
Exploits0References6
Rows per page
Query Builder