Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
QnapQts4.3.6.1033

8 matches found

CVE
CVEadded 2021/04/17 4:15 a.m.1129 views

CVE-2020-2509

A command injection vulnerability has been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. We have already fixed this vulnerability in the following versions: QTS 4.5.2.1566 Build 20210202 and later ...

9.8CVSS9.8AI score0.84258EPSS
CVE
CVEadded 2019/12/05 5:15 p.m.993 views

CVE-2019-7193

This improper input validation vulnerability allows remote attackers to inject arbitrary code to the system. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.

10CVSS9.4AI score0.415EPSS
CVE
CVEadded 2021/04/17 4:15 a.m.262 views

CVE-2020-36195

An SQL injection vulnerability has been reported to affect QNAP NAS running Multimedia Console or the Media Streaming add-on. If exploited, the vulnerability allows remote attackers to obtain application information. QNAP has already fixed this vulnerability in the following versions of Multimedia ...

9.8CVSS9.7AI score0.02018EPSS
CVE
CVEadded 2021/04/16 1:15 a.m.65 views

CVE-2018-19942

A cross-site scripting (XSS) vulnerability has been reported to affect earlier versions of File Station. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions: QTS 4.5.2.1566 build 20210202 (and later) Q...

6.1CVSS6AI score0.0027EPSS
CVE
CVEadded 2023/11/03 5:15 p.m.60 views

CVE-2023-23369

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions:Multimedia Console 2.1.2 ( 2023/05/04 ) an...

9.8CVSS9.6AI score0.14766EPSS
CVE
CVEadded 2024/09/06 5:15 p.m.56 views

CVE-2023-39300

An OS command injection vulnerability has been reported to affect legacy QTS. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions:QTS 4.3.6.2805 build 20240619 and laterQTS 4.3....

7.2CVSS7.2AI score0.00236EPSS
CVE
CVEadded 2019/12/05 5:15 p.m.44 views

CVE-2019-7183

This improper link resolution vulnerability allows remote attackers to access system files. To fix this vulnerability, QNAP recommend updating QTS to their latest versions.

9.8CVSS9.3AI score0.01246EPSS
CVE
CVEadded 2019/12/04 5:16 p.m.37 views

CVE-2018-0730

This command injection vulnerability in File Station allows attackers to execute commands on the affected device. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.

9.8CVSS9.7AI score0.01203EPSS