Lucene search
K

105 matches found

Positive Technologies
Positive Technologies
added 2024/03/08 12:0 a.m.4 views

PT-2024-12488

Name of the Vulnerable Software and Affected Versions QNAP QTS versions prior to 4.5.4.2627 build 20231225 QNAP QuTS hero versions prior to h4.5.4.2626 build 20231225 Description An OS command injection issue has been reported, affecting several QNAP operating system versions. If exploited, this...

8.4CVSS7.5AI score0.0088EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/02/15 12:0 a.m.20 views

QNAP QTS / QuTS hero Vulnerability in QTS, QuTS hero (QSA-23-47)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by a vulnerability as referenced in the QSA-23-47 advisory. - An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to...

9.8CVSS8.4AI score0.01128EPSS
Exploits0References2
NVD
NVD
added 2024/02/13 3:15 a.m.24 views

CVE-2023-50358

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

5.8CVSS6AI score0.12769EPSS
Exploits1References3
NVD
NVD
added 2024/02/13 3:15 a.m.25 views

CVE-2023-47218

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

8.3CVSS6AI score0.89157EPSS
Exploits4References2
Prion
Prion
added 2024/02/13 3:15 a.m.25 views

Command injection

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

4.3CVSS8AI score0.12769EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/02/13 2:45 a.m.30 views

CVE-2023-50358 QTS, QuTS hero, QuTScloud

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

5.8CVSS6.3AI score0.12769EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2024/02/13 12:0 a.m.50 views

CVE-2023-50358

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later...

5.8CVSS8.1AI score0.12769EPSS
In wildExploits1References4
OpenVAS
OpenVAS
added 2024/02/13 12:0 a.m.21 views

QNAP QuTScloud Multiple OS Command Injection Vulnerabilities (QSA-23-57) - Version Check

QNAP QuTScloud is prone to multiple OS command injection vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

8.3CVSS7.3AI score0.89157EPSS
Exploits5References1
OSV
OSV
added 2024/02/02 4:15 p.m.1 views

CVE-2023-41276

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

7.2CVSS6.1AI score0.00547EPSS
Exploits0References1
OSV
OSV
added 2024/02/02 4:15 p.m.2 views

CVE-2023-41279

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

7.2CVSS6.1AI score
Exploits0References1
NVD
NVD
added 2024/02/02 4:15 p.m.30 views

CVE-2023-39297

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.4.2596 build...

8.8CVSS8.9AI score0.01405EPSS
Exploits0References1
Prion
Prion
added 2024/02/02 4:15 p.m.16 views

Command injection

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.4.2596...

5.8CVSS7.9AI score0.00968EPSS
Exploits0References1Affected Software3
Prion
Prion
added 2024/02/02 4:15 p.m.22 views

Command injection

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.4.2596 build...

6.5CVSS7.8AI score0.01405EPSS
Exploits0References1Affected Software3
Prion
Prion
added 2024/02/02 4:15 p.m.17 views

Input validation

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

5.8CVSS7.5AI score0.0058EPSS
Exploits0References1Affected Software3
Prion
Prion
added 2024/02/02 4:15 p.m.15 views

Command injection

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.4.2596 build 20231128 and later...

7.5CVSS8AI score0.01128EPSS
Exploits0References1Affected Software3
Vulnrichment
Vulnrichment
added 2024/02/02 4:5 p.m.17 views

CVE-2023-47562 Photo Station

An OS command injection vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following version: Photo Station 6.4.2 2023/12/15 and later...

7.4CVSS7.5AI score0.01111EPSS
Exploits0References1
NVD
NVD
added 2024/01/05 5:15 p.m.26 views

CVE-2023-41288

An OS command injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following version: Video Station 5.7.2 2023/11/23 and later...

8.8CVSS9AI score0.0114EPSS
Exploits0References1
Prion
Prion
added 2024/01/05 5:15 p.m.22 views

Command injection

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578...

5.8CVSS7.8AI score0.01123EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2024/01/05 4:19 p.m.16 views

CVE-2023-39294 QTS, QuTS hero

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578...

6.6CVSS7.5AI score0.01123EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/01/05 12:0 a.m.5 views

QNAP Systems QTS and QuTS hero Operating System Command Injection Vulnerability

QNAP Systems QTS and QNAP Systems QuTS hero are both products of China Weilian Technology QNAP Systems.QNAP Systems QTS is an operating system used by entry to mid-level QNAP NAS.QNAP Systems QuTS hero is an operating system. An operating system command injection vulnerability exists in QNAP QTS...

7.2CVSS7.7AI score0.01123EPSS
Exploits0References2
Rows per page
Query Builder