11 matches found
CVE-2023-47218
An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...
Qnap Multiple Vulnerabilities in QTS, QuTS hero and QuTScloud (CVE-2023-47218)
Multiple vulnerabilities have been reported to affect several QNAP operating system versions. If exploited, the OS command injection vulnerabilities could allow users to execute commands via a network. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-o...
QNAP QTS / QuTS Hero Unauthenticated Remote Code Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'QNAP QTS and QuTS Hero Unauthenticated Remote Code Execution in quick.cgi', 'Description' = %q There exists an unauthenticated command injection...
VulnCheck KEV: CVE-2023-47218
QNAP NAS quick.cgi command injection vulnerability in QTS and QuTS hero...
QNAP QTS / QuTS hero Multiple Vulnerabilities in QTS, QuTS hero (QSA-23-57)
The version of QNAP QTS / QuTS hero installed on the remote host is affected by multiple vulnerabilities as referenced in the QSA-23-57 advisory: - An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow...
QNAP QTS, QuTS hero, QuTScloud OS Command Injection Vulnerability (CVE-2023-47218, QSA-23-57) - Active Check
QNAP QTS, QuTS hero and QuTScloud are prone to an OS command injection vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPEPREFIX...
CVE-2023-47218
creationtimestamp| type| source ---|---|--- 2024-02-13 04:31:43+00:00| seen| https://t.me/ctinow/183590 2024-02-14 12:16:32+00:00| seen| https://t.me/ctinow/184575 2024-02-14 22:24:47+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/9971 2024-02-21 17:07:58+00:00| seen|...
CVE-2023-47218 QTS, QuTS hero, QuTScloud
An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...
CVE-2023-47218
Summary : CVE-2023-47218 is an OS command injection vulnerability affecting QNAP QTS, QuTS Hero, and QuTScloud. The flaw allows unauthenticated users on the local/network path to execute commands remotely via the affected OS components (notably the OS command injection vector reported for QTS/QuT...
QNAP QuTScloud Multiple OS Command Injection Vulnerabilities (QSA-23-57) - Version Check
QNAP QuTScloud is prone to multiple OS command injection vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
QNAP QuTS hero Multiple OS Command Injection Vulnerabilities (QSA-23-57) - Version Check
QNAP QuTS hero is prone to multiple OS command injection vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...