Lucene search
K

5 matches found

BDU FSTEC
BDU FSTEC
added 2024/05/20 12:0 a.m.6 views

The vulnerability in the get_file_size function of the share.cgi file on QTS, QuTS hero, and QuTScloud operating systems, as well as on Qnap network devices, allows a hacker to execute arbitrary code.

The vulnerability of the getfilesize function in the share.cgi file of QTS, QuTS, Hero, and QuTScloud operating systems, as well as QNAP network devices, is related to the possibility of buffer overflow based on a stack-based mechanism. Exploiting this vulnerability allows a remote attacker to...

8.5CVSS6.6AI score0.38054EPSS
Exploits3References3
Positive Technologies
Positive Technologies
added 2023/12/12 12:0 a.m.6 views

PT-2023-9122 · Qnap · Qts +1

Name of the Vulnerable Software and Affected Versions: QTS versions prior to 5.1.7.2770 build 20240520 QuTS hero versions prior to h5.1.7.2770 build 20240520 Description: The issue is related to a buffer copy without checking the size of the input, which can lead to a stack overflow. This allows...

8.8CVSS7.2AI score0.38054EPSS
Exploits3References44
CNVD
CNVD
added 2018/12/05 12:0 a.m.3 views

ASUSTOR ADM Information Disclosure Vulnerability (CNVD-2018-26926)

ASUSTOR ADM is an operating system from ASUSTOR dedicated to ASUSTOR NAS storage devices. An information disclosure vulnerability exists in the share.cgi file in ASUSTOR ADM version 3.1.1, which can be exploited by an attacker to obtain a key with the help of the 'encryptkey' URL parameter...

6.5CVSS6.5AI score0.00586EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/12/04 5:0 p.m.19 views

CVE-2018-12308

Encryption key disclosure in share.cgi in ASUSTOR ADM version 3.1.1 allows attackers to obtain the encryption key via the "encryptkey" URL parameter...

7AI score0.00586EPSS
Exploits1References1
CVE
CVE
added 2018/12/04 5:0 p.m.42 views

CVE-2018-12308

ASUSTOR ADM 3.1.1 is affected by an information disclosure in share.cgi that allows an attacker to obtain the encryption key via the encrypt_key URL parameter. The root cause is a flaw in how share.cgi handles the key, enabling unauthorized access to the encryption key and potential compromise of...

6.5CVSS6.9AI score0.00586EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder