Qts@4.2.6 Security Vulnerabilities and Issues — Qts@4.2.6 CVE List

Lucene search

QnapQts4.2.6

4 matches found

CVE•added 2022/05/05 5:15 p.m.•98 views

CVE-2021-44051

A command injection vulnerability has been reported to affect QNAP NAS running QuTScloud, QuTS hero and QTS. If exploited, this vulnerability allows remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QuTScloud, QuTS hero and QTS: QuTScl...

8.8CVSS8.9AI score0.01801EPSS

CVE•added 2022/05/05 5:15 p.m.•90 views

CVE-2021-44054

An open redirect vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero and QTS. If exploited, this vulnerability allows attackers to redirect users to an untrusted page that contains malware. We have already fixed this vulnerability in the following versions of QuTSclou...

6.1CVSS5.2AI score0.00208EPSS

CVE•added 2022/05/05 5:15 p.m.•79 views

CVE-2021-44053

A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running QTS, QuTS hero and QuTScloud. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of QTS, QuTS hero and QuTScl...

6.1CVSS5.7AI score0.00332EPSS

CVE•added 2022/05/05 5:15 p.m.•68 views

CVE-2021-44052

An improper link resolution before file access ('Link Following') vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero, and QTS. If exploited, this vulnerability allows remote attackers to traverse the file system to unintended locations and read or overwrite the conte...

8.1CVSS7AI score0.00289EPSS