2 matches found
The vulnerability in the get_file_size function of the share.cgi file on QTS, QuTS hero, and QuTScloud operating systems, as well as on Qnap network devices, allows a hacker to execute arbitrary code.
The vulnerability of the getfilesize function in the share.cgi file of QTS, QuTS, Hero, and QuTScloud operating systems, as well as QNAP network devices, is related to the possibility of buffer overflow based on a stack-based mechanism. Exploiting this vulnerability allows a remote attacker to...
PT-2023-9122 · Qnap · Qts +1
Name of the Vulnerable Software and Affected Versions: QTS versions prior to 5.1.7.2770 build 20240520 QuTS hero versions prior to h5.1.7.2770 build 20240520 Description: The issue is related to a buffer copy without checking the size of the input, which can lead to a stack overflow. This allows...