Lucene search
K

4 matches found

Packet Storm News
Packet Storm News
added 2025/07/07 12:0 a.m.5 views

QNAP Remote Code Execution

QNAP proof of concept stack overflow remote code execution exploit. This has been addressed in versions QTS 5.1.7.2770 build 20240520, hero h5.1.7.2770 build 20240520 and above...

8.8CVSS8.2AI score0.38054EPSS
Exploits3
OpenVAS
OpenVAS
added 2024/09/10 12:0 a.m.14 views

QNAP QTS curl Vulnerability (QSA-24-27)

QNAP QTS is prone to a heap buffer overflow vulnerability in curl. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qts";...

9.8CVSS10AI score0.78483EPSS
Exploits6References1
NCSC
NCSC
added 2024/05/22 8:2 a.m.6 views

Vulnerabilities fixed in QNAP QTS and QTS Hero

QNAP has fixed vulnerabilities in QTS and QTS Hero. A malicious person could exploit the vulnerabilities to execute arbitrary code on the vulnerable system. For successful abuse, the malicious party must be authorized. QNAP has released updates to fix the vulnerabilities in QTS and QTS Hero...

8.8CVSS7.8AI score0.38054EPSS
Exploits3References1
OSV
OSV
added 2024/05/21 4:15 p.m.2 views

CVE-2024-27127

A double free vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute arbitrary code via a network. We have already fixed the vulnerability in the following version: QTS 5.1.7.2770 build 20240520...

8.8CVSS6.1AI score0.00696EPSS
Exploits0References1
Rows per page
Query Builder