6 matches found
Qnap VioStor < 5.0.0 Command Injection (CVE-2023-47565)
The version of Qnap VioStor installed on the remote host is prior to 5.0.0. It is, therefore, affected by an OS command injection vulnerability. If exploited, the vulnerability could allow authenticated users to execute commands. Note that Nessus has not tested for these issues but has instead...
Qnap VioStor < 5.0.0 Command Injection (CVE-2023-47565)
Binary data qnapviostorCVE-2023-47565.nbin...
QNAP VioStor NVR
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.0 ATTENTION : Exploitable remotely/low attack complexity/public exploits are available/known public exploitation Vendor : QNAP Equipment : VioStor NVR Vulnerability : OS Command Injection 2. RISK EVALUATION Successful exploitation of this vulnerability...
CVE-2023-47565
creationtimestamp| type| source ---|---|--- 2023-12-18 09:41:54+00:00| seen| https://t.me/itsecnews/3861 2023-12-18 10:17:57+00:00| seen| https://t.me/ctinow/155788 2023-12-18 12:17:45+00:00| seen| https://t.me/truesecator/5210 2023-12-21 18:10:02+00:00| seen|...
CVE-2023-47565
CVE-2023-47565 affects legacy QNAP VioStor NVRs prior to QVR Firmware 5.x, where an OS command injection (CWE-78) in QVR Firmware 4.x could let an authenticated user execute commands over the network. Affected component is the VioStor NVR’s QVR firmware (pre-5.x). The vulnerability’s root cause i...
CVE-2023-47565 Legacy VioStor NVR
An OS command injection vulnerability has been found to affect legacy QNAP VioStor NVR models running QVR Firmware 4.x. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QVR Firmwar...