Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2024/02/09 12:0 a.m.16 views

QNAP QTS / QuTS hero Multiple Vulnerabilities in QTS, QuTS hero, and QuTScloud (QSA-24-05)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by multiple vulnerabilities as referenced in the QSA-24-05 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

8.8CVSS7.5AI score0.01108EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/02/05 12:0 a.m.17 views

QNAP QuTS hero Multiple Vulnerabilities (QSA-24-05)

QNAP QuTS hero is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qutshero"; ifdescriptio...

8.8CVSS9.2AI score0.01108EPSS
Exploits0References1
NVD
NVD
added 2024/02/02 4:15 p.m.18 views

CVE-2023-47568

A SQL injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 2024011...

8.8CVSS8.8AI score0.00535EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/02/02 4:6 p.m.17 views

CVE-2023-47568 QTS, QuTS hero, QuTScloud

A SQL injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 2024011...

8.8CVSS9AI score0.00535EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/02 4:6 p.m.13 views

CVE-2023-47568 QTS, QuTS hero, QuTScloud

A SQL injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 2024011...

8.8CVSS7.6AI score0.00535EPSS
Exploits0References1
CVE
CVE
added 2024/02/02 4:6 p.m.58 views

CVE-2023-47568

CVE-2023-47568 is a SQL injection vulnerability reported for several QNAP OS lines (QTS, QTS Hero, QuTS, QuTScloud). The issue allows an authenticated user to inject malicious code via a network, indicating a server-side injection in affected components exposed to network input. The vulnerability...

8.8CVSS8.7AI score0.00535EPSS
Exploits0References1Affected Software3
Rows per page
Query Builder