4 matches found
QNAP QuTS hero SSRF Vulnerability (QSA-23-51)
QNAP QuTS hero is prone to a server-side request forgery SSRF vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
QNAP QTS / QuTS hero SSRF QSA-23-51)
The version of QNAP QTS / QuTS hero installed on the remote host is affected by a vulnerability as referenced in the QSA-23-51 advisory. - A server-side request forgery SSRF vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could all...
CVE-2023-39301
A server-side request forgery SSRF vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to read application data via a network. We have already fixed the vulnerability in the following versions: QTS...
CVE-2023-39301
CVE-2023-39301 describes an SSRF vulnerability affecting QNAP QTS/QTS Hero/QTScloud, allowing authenticated users to read application data over the network. Affected products include QTS (versions prior to 5.0.1.2514 and 5.1.1.2491+), QuTS hero (h5.0.1.2515 and h5.1.1.2488+), and QuTScloud (c5.1....