Lucene search
+L

11 matches found

RedhatCVE
RedhatCVE
added 2025/02/13 9:4 p.m.7 views

CVE-2023-47218

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

5.8CVSS7.5AI score0.8992EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2024/10/16 12:0 a.m.14 views

Qnap Multiple Vulnerabilities in QTS, QuTS hero and QuTScloud (CVE-2023-47218)

Multiple vulnerabilities have been reported to affect several QNAP operating system versions. If exploited, the OS command injection vulnerabilities could allow users to execute commands via a network. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-o...

8.3CVSS7.2AI score0.8992EPSS
Exploits4References2
Packet Storm
Packet Storm
added 2024/02/22 12:0 a.m.598 views

QNAP QTS / QuTS Hero Unauthenticated Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'QNAP QTS and QuTS Hero Unauthenticated Remote Code Execution in quick.cgi', 'Description' = %q There exists an unauthenticated command injection...

5.8CVSS7.4AI score0.8992EPSS
Exploits4
VulnCheck KEV
VulnCheck KEV
added 2024/02/16 12:0 a.m.5 views

VulnCheck KEV: CVE-2023-47218

QNAP NAS quick.cgi command injection vulnerability in QTS and QuTS hero...

8.3CVSS6.7AI score0.8992EPSS
Exploits4References1
Tenable Nessus
Tenable Nessus
added 2024/02/15 12:0 a.m.31 views

QNAP QTS / QuTS hero Multiple Vulnerabilities in QTS, QuTS hero (QSA-23-57)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by multiple vulnerabilities as referenced in the QSA-23-57 advisory: - An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow...

8.3CVSS7.2AI score0.8992EPSS
Exploits5References3
OpenVAS
OpenVAS
added 2024/02/15 12:0 a.m.14 views

QNAP QTS, QuTS hero, QuTScloud OS Command Injection Vulnerability (CVE-2023-47218, QSA-23-57) - Active Check

QNAP QTS, QuTS hero and QuTScloud are prone to an OS command injection vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPEPREFIX...

8.3CVSS6.5AI score0.8992EPSS
Exploits4References1
Circl
Circl
added 2024/02/13 4:31 a.m.53 views

CVE-2023-47218

creationtimestamp| type| source ---|---|--- 2024-02-13 04:31:43+00:00| seen| https://t.me/ctinow/183590 2024-02-14 12:16:32+00:00| seen| https://t.me/ctinow/184575 2024-02-14 22:24:47+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/9971 2024-02-21 17:07:58+00:00| seen|...

8.3CVSS6.8AI score0.8992EPSS
In wildExploits4References9
Cvelist
Cvelist
added 2024/02/13 2:44 a.m.33 views

CVE-2023-47218 QTS, QuTS hero, QuTScloud

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

5.8CVSS6.3AI score0.8992EPSS
Exploits4References2
CVE
CVE
added 2024/02/13 2:44 a.m.150 views

CVE-2023-47218

Summary : CVE-2023-47218 is an OS command injection vulnerability affecting QNAP QTS, QuTS Hero, and QuTScloud. The flaw allows unauthenticated users on the local/network path to execute commands remotely via the affected OS components (notably the OS command injection vector reported for QTS/QuT...

8.3CVSS6.3AI score0.8992EPSS
In wildExploits4References2Affected Software3
OpenVAS
OpenVAS
added 2024/02/13 12:0 a.m.21 views

QNAP QuTScloud Multiple OS Command Injection Vulnerabilities (QSA-23-57) - Version Check

QNAP QuTScloud is prone to multiple OS command injection vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.3CVSS7.3AI score0.8992EPSS
Exploits5References1
OpenVAS
OpenVAS
added 2024/02/13 12:0 a.m.18 views

QNAP QuTS hero Multiple OS Command Injection Vulnerabilities (QSA-23-57) - Version Check

QNAP QuTS hero is prone to multiple OS command injection vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.3CVSS7.3AI score0.8992EPSS
Exploits5References1
Rows per page
Query Builder