Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qts vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2017-6361
QNAP QTS prior to 4.2.4 Build 20170313 allows malicious users to execute arbitrary commands via unspecified vectors.
Qnap Qts
1 EDB exploit
445
VMScore
CVE-2017-7629
QNAP QTS prior to 4.2.6 build 20170517 has a flaw in the change password function.
Qnap Qts
668
VMScore
CVE-2017-7876
This command injection vulnerability in QTS allows malicious users to run arbitrary commands in the compromised application. QNAP have already fixed the issue in QTS 4.2.6 build 20170517, QTS 4.3.3.0174 build 20170503 and later versions.
Qnap Qts
NA
CVE-2024-21900
An injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578 buil...
Qnap Qts 5.1.3.2578
Qnap Quts Hero H5.1.3.2578
Qnap Qts
Qnap Quts Hero
Qnap Qutscloud
1 Article
505
VMScore
CVE-2017-13068
QNAP has already patched this vulnerability. This security concern allows a remote malicious user to perform an SQL injection on the application and obtain Helpdesk application information. A remote attacker does not require any privileges to successfully execute this attack.
Qnap Qts Helpdesk
1 EDB exploit
890
VMScore
CVE-2017-10700
In the medialibrary component in QNAP NAS 4.3.3.0229, an un-authenticated, remote attacker can execute arbitrary system commands as the root user of the NAS application.
Qnap Qts 4.3.3.0229
383
VMScore
CVE-2020-2498
If exploited, this cross-site scripting vulnerability could allow remote malicious users to inject malicious code in certificate configuration. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 20201031 and l...
Qnap Quts Hero
Qnap Qts
668
VMScore
CVE-2021-28804
A command injection vulnerabilities have been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows malicious users to execute arbitrary commands in a compromised application. This issue affects: QNAP Systems Inc. QTS versions before 4.5.1.1540 build 20210...
Qnap Qts
Qnap Quts Hero
668
VMScore
CVE-2021-28802
A command injection vulnerabilities have been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows malicious users to execute arbitrary commands in a compromised application. This issue affects: QNAP Systems Inc. QTS versions before 4.5.1.1540 build 20210...
Qnap Qts
Qnap Quts Hero
383
VMScore
CVE-2020-2495
If exploited, this cross-site scripting vulnerability could allow remote malicious users to inject malicious code in File Station. QANP have already fixed these vulnerabilities in the following versions of QTS and QuTS hero. QuTS hero h4.5.1.1472 build 20201031 and later QTS 4.5....
Qnap Quts Hero
Qnap Qts
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »