Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qnap quts hero vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-28800
A command injection vulnerability has been reported to affect QNAP NAS running legacy versions of QTS. If exploited, this vulnerability allows malicious users to execute arbitrary commands in a compromised application. This issue affects: QNAP Systems Inc. QTS versions before 4.3...
Qnap Qts
6.8
CVSSv2
CVE-2021-34360
A cross-site request forgery (CSRF) vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote malicious users to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Ser...
Qnap Nas Proxy Server
7.5
CVSSv2
CVE-2021-34344
A stack buffer overflow vulnerability has been reported to affect QNAP device running QUSBCam2. If exploited, this vulnerability allows malicious users to execute arbitrary code. We have already fixed this vulnerability in the following versions of QUSBCam2: QTS 4.5.4: QUSBCam2 1...
Qnap Qusbcam2
3.5
CVSSv2
CVE-2021-28807
A post-authentication reflected XSS vulnerability has been reported to affect QNAP NAS running Q’center. If exploited, this vulnerability allows remote malicious users to inject malicious code. QNAP have already fixed this vulnerability in the following versions of Q’...
Qnap Q\\'center
6.5
CVSSv2
CVE-2021-34362
A command injection vulnerability has been reported to affect QNAP device running Media Streaming add-on. If exploited, this vulnerability allow remote malicious users to run arbitrary commands. We have already fixed this vulnerability in the following versions of Media Streaming...
Qnap Media Streaming Add-on
7.5
CVSSv2
CVE-2021-28799
An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 (Hybrid Backup Sync. ) If exploited, the vulnerability allows remote malicious users to log in to a device. This issue affects: QNAP Systems Inc. HBS 3 versions prior to v16.0.0415 on QTS 4...
Qnap Hybrid Backup Sync
5.8
CVSSv2
CVE-2020-36197
An improper access control vulnerability has been reported to affect earlier versions of Music Station. If exploited, this vulnerability allows malicious users to compromise the security of the software by gaining privileges, reading sensitive information, executing commands, eva...
Qnap Music Station
NA
CVE-2023-50358
An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 2...
1 Github repository
2 Articles
NA
CVE-2024-27130
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute code via a network. We have already fixed the vulnerability in the following version: QTS 5....
2 Github repositories
2 Articles
NA
CVE-2024-32766
An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578 build 2...
3 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »