Lucene search
+L

4 matches found

OpenVAS
OpenVAS
added 2023/11/07 12:0 a.m.18 views

QNAP QuTS hero SSRF Vulnerability (QSA-23-51)

QNAP QuTS hero is prone to a server-side request forgery SSRF vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.3CVSS4.7AI score0.00335EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.19 views

QNAP QTS / QuTS hero SSRF QSA-23-51)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by a vulnerability as referenced in the QSA-23-51 advisory. - A server-side request forgery SSRF vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could all...

4.3CVSS5.3AI score0.00335EPSS
Exploits0References2
NVD
NVD
added 2023/11/03 5:15 p.m.24 views

CVE-2023-39301

A server-side request forgery SSRF vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to read application data via a network. We have already fixed the vulnerability in the following versions: QTS...

4.3CVSS4.3AI score0.00335EPSS
Exploits0References1
CVE
CVE
added 2023/11/03 4:34 p.m.45 views

CVE-2023-39301

CVE-2023-39301 describes an SSRF vulnerability affecting QNAP QTS/QTS Hero/QTScloud, allowing authenticated users to read application data over the network. Affected products include QTS (versions prior to 5.0.1.2514 and 5.1.1.2491+), QuTS hero (h5.0.1.2515 and h5.1.1.2488+), and QuTScloud (c5.1....

4.3CVSS4.2AI score0.00335EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder