Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qts vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-7629
QNAP QTS prior to 4.2.6 build 20170517 has a flaw in the change password function.
Qnap Qts
9.8
CVSSv3
CVE-2021-28800
A command injection vulnerability has been reported to affect QNAP NAS running legacy versions of QTS. If exploited, this vulnerability allows malicious users to execute arbitrary commands in a compromised application. This issue affects: QNAP Systems Inc. QTS versions before 4.3...
Qnap Qts
6.1
CVSSv3
CVE-2015-5664
Cross-site scripting (XSS) vulnerability in File Station in QNAP QTS prior to 4.2.0 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Qnap Qts
6.5
CVSSv3
CVE-2024-21900
An injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578 buil...
Qnap Qts 5.1.3.2578
Qnap Quts Hero H5.1.3.2578
Qnap Qts
Qnap Quts Hero
Qnap Qutscloud
1 Article
9.8
CVSSv3
CVE-2017-10700
In the medialibrary component in QNAP NAS 4.3.3.0229, an un-authenticated, remote attacker can execute arbitrary system commands as the root user of the NAS application.
Qnap Qts 4.3.3.0229
7.5
CVSSv3
CVE-2017-13068
QNAP has already patched this vulnerability. This security concern allows a remote malicious user to perform an SQL injection on the application and obtain Helpdesk application information. A remote attacker does not require any privileges to successfully execute this attack.
Qnap Qts Helpdesk
1 EDB exploit
9.8
CVSSv3
CVE-2022-27596
A vulnerability has been reported to affect QNAP device running QuTS hero, QTS. If exploited, this vulnerability allows remote malicious users to inject malicious code. We have already fixed this vulnerability in the following versions of QuTS hero, QTS: QuTS hero h5.0.1.2248 bui...
Qnap Qts
Qnap Quts Hero
6.1
CVSSv3
CVE-2020-2498
If exploited, this cross-site scripting vulnerability could allow remote malicious users to inject malicious code in certificate configuration. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 20201031 and l...
Qnap Quts Hero
Qnap Qts
6.1
CVSSv3
CVE-2020-2495
If exploited, this cross-site scripting vulnerability could allow remote malicious users to inject malicious code in File Station. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 20201031 and later QTS 4.5....
Qnap Quts Hero
Qnap Qts
6.1
CVSSv3
CVE-2020-2496
If exploited, this cross-site scripting vulnerability could allow remote malicious users to inject malicious code in File Station. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 20201031 and later QTS 4.5....
Qnap Quts Hero
Qnap Qts
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »