Lucene search
K

8 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/11 12:15 p.m.3 views

CVE-2025-66277

A link following vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to traverse the file system to unintended locations. We have already fixed the vulnerability in the following versions: QTS 5.2.8.3350 build...

9.2CVSS5.5AI score0.00633EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

Qnap QTS and QuTS hero Use of Externally-Controlled Format String (CVE-2025-53591)

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to obtain secret data or modify memory. We have already fixed the vulnerabili...

6.5CVSS5.4AI score0.00285EPSS
Exploits0References2
CVE
CVE
added 2026/01/02 3:17 p.m.9 views

CVE-2025-48721

CVE-2025-48721 describes a buffer overflow affecting QNAP OS such as QTS and QuTS hero. Connected documents confirm a vulnerability where a remote attacker who already has an administrator account can trigger memory modification or process crashes. The issue is mitigated by fixes introduced in QT...

6.5CVSS7AI score0.00385EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/01/02 3:16 p.m.4 views

CVE-2025-52430

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

4.9CVSS5.8AI score0.003EPSS
Exploits0References1
OSV
OSV
added 2025/12/16 3:15 a.m.7 views

CVE-2025-62847

An improper neutralization of argument delimiters in a command vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to alter execution logic. We have already fixed the vulnerability in the following versions: QTS...

7.5CVSS6AI score0.00778EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/29 12:0 a.m.4 views

QNAP QTS和QNAP QuTS hero 路径遍历漏洞

QNAP QTS is a NAS operating system developed by QNAPSystems, Inc. designed for network attached storage devices, providing data management, backup, multimedia entertainment, etc. QNAP QuTS hero is an enterprise-grade operating system developed by QNAP for its networked storage devices NAS, which ...

6.5CVSS6.7AI score0.00445EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/04/26 12:0 a.m.4 views

PT-2024-19118 · Qnap · Qnap Qts +2

Name of the Vulnerable Software and Affected Versions: QNAP QTS versions prior to 5.1.3.2578 build 20231110 QNAP QuTS hero versions prior to 5.1.3.2578 build 20231110 QNAP QuTScloud versions prior to 5.1.5.2651 Description: An integer overflow or wraparound issue has been reported to affect sever...

6.5CVSS7.5AI score0.00456EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/04/26 12:0 a.m.6 views

PT-2024-13926 · Qnap · Qnap Qts +1

Name of the Vulnerable Software and Affected Versions: QNAP QTS versions prior to 5.1.6.2722 build 20240402 QNAP QuTS hero versions prior to h5.1.6.2734 build 20240414 Description: An incorrect authorization issue has been reported, affecting several QNAP operating system versions. If exploited,...

8.1CVSS7AI score0.00419EPSS
Exploits0References5
Rows per page
Query Builder