Lucene search
+L

5 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.16 views

Qnap QTS OS Command Injection (CVE-2023-39294)

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578...

7.2CVSS8AI score0.01123EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/01/09 12:0 a.m.27 views

QNAP QuTS hero Multiple Vulnerabilities (QSA-23-22, QSA-23-54, QSA-23-64)

QNAP QuTS hero is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qutshero"; ifdescriptio...

9.8CVSS9.6AI score0.18903EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/01/08 12:0 a.m.25 views

QNAP QTS / QuTS hero Vulnerability in QTS and QuTS hero (QSA-23-54)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by a vulnerability as referenced in the QSA-23-54 advisory. - An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow...

7.2CVSS8.2AI score0.01123EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/01/05 4:19 p.m.30 views

CVE-2023-39294 QTS, QuTS hero

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578...

6.6CVSS8.1AI score0.01123EPSS
Exploits0References1
CVE
CVE
added 2024/01/05 4:19 p.m.70 views

CVE-2023-39294

CVE-2023-39294 is an OS command injection vulnerability affecting QNAP QTS and QuTS hero, enabling authenticated administrators to execute commands over the network. The vulnerability’s root cause details are not explicitly provided in the documents beyond the general command injection descriptio...

7.2CVSS7.8AI score0.01123EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder