Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:30 a.m.5 views

CVE-2024-48866

An improper handling of URL encoding Hex Encoding vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers to run the system into unexpected state. We have already fixed the vulnerability in the following...

2.3CVSS7AI score0.00431EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 6:49 a.m.9 views

CVE-2024-53691

A link following vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to traverse the file system to unintended locations. We have already fixed the vulnerability in the following...

8.8CVSS6.9AI score0.20112EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:41 a.m.8 views

CVE-2024-37045

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

5.1CVSS6.9AI score0.00574EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 6:41 a.m.9 views

CVE-2024-37044

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute code. We have already fixed the vulnerability in the followin...

5.1CVSS7.4AI score0.0083EPSS
Exploits0
Cvelist
Cvelist
added 2025/03/07 4:14 p.m.22 views

CVE-2024-53699 QTS, QuTS hero

An out-of-bounds write vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to modify or corrupt memory. We have already fixed the vulnerability in the following versions...

2.1CVSS0.00465EPSS
Exploits0References1
CVE
CVE
added 2025/03/07 4:14 p.m.57 views

CVE-2024-53698

CVE-2024-53698 is a double free vulnerability affecting QNAP QTS and QuTS hero. Root cause: memory management flaw that could allow remote attackers who have gained administrator access to modify memory. Impact stated: exploit could enable memory modification. Remediation: fixed in QTS 5.2.3.3006...

4.9CVSS7.2AI score0.00359EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/12/06 4:36 p.m.74 views

CVE-2024-48867

CVE-2024-48867 concerns CRLF injection in QNAP QTS and QuTS Hero. Affected products/versions include QTS 5.1.9.2954 (build 20241120) and later, QTS 5.2.2.2950 (build 20241114) and later, QuTS hero h5.1.9.2954 (build 20241120) and later, and QuTS hero h5.2.2.2952 (build 20241116) and later. The CW...

7.5CVSS6.7AI score0.00495EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder