Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qts vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-6361
QNAP QTS prior to 4.2.4 Build 20170313 allows malicious users to execute arbitrary commands via unspecified vectors.
Qnap Qts
1 EDB exploit
7.5
CVSSv3
CVE-2017-7629
QNAP QTS prior to 4.2.6 build 20170517 has a flaw in the change password function.
Qnap Qts
NA
CVE-2015-6003
Directory traversal vulnerability in QNAP QTS prior to 4.1.4 build 0910 and 4.2.x prior to 4.2.0 RC2 build 0910, when AFP is enabled, allows remote malicious users to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.
Qnap Qts
6.5
CVSSv3
CVE-2024-21900
An injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578 buil...
Qnap Qts 5.1.3.2578
Qnap Quts Hero H5.1.3.2578
Qnap Qts
Qnap Quts Hero
Qnap Qutscloud
1 Article
9.8
CVSSv3
CVE-2017-10700
In the medialibrary component in QNAP NAS 4.3.3.0229, an un-authenticated, remote attacker can execute arbitrary system commands as the root user of the NAS application.
Qnap Qts 4.3.3.0229
7.5
CVSSv3
CVE-2017-13068
QNAP has already patched this vulnerability. This security concern allows a remote malicious user to perform an SQL injection on the application and obtain Helpdesk application information. A remote attacker does not require any privileges to successfully execute this attack.
Qnap Qts Helpdesk
1 EDB exploit
8.8
CVSSv3
CVE-2023-34971
An inadequate encryption strength vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local network clients to decrypt the data using brute force attacks via unspecified vectors. We have already fixed the vulnerability...
Qnap Quts Hero
Qnap Qts
5.3
CVSSv3
CVE-2023-34973
An insufficient entropy vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows remote users to predict secret via unspecified vectors. We have already fixed the vulnerability in the following versions: QTS 5.0.1.2425 buil...
Qnap Quts Hero
Qnap Qts
7.5
CVSSv3
CVE-2021-28798
A relative path traversal vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero. If exploited, this vulnerability allows malicious users to modify files that impact system integrity. QNAP have already fixed this vulnerability in the following versions: QTS ...
Qnap Quts Hero
Qnap Qts
9.8
CVSSv3
CVE-2021-28802
A command injection vulnerabilities have been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows malicious users to execute arbitrary commands in a compromised application. This issue affects: QNAP Systems Inc. QTS versions before 4.5.1.1540 build 20210...
Qnap Qts
Qnap Quts Hero
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »