Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qts vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2020-2490
If exploited, the command injection vulnerability could allow remote malicious users to execute arbitrary commands. This issue affects: QNAP Systems Inc. QTS versions before 4.4.3.1421 on build 20200907.
Qnap Qts
9.8
CVSSv3
CVE-2017-13067
QNAP has patched a remote code execution vulnerability affecting the QTS Media Library in all versions prior to QTS 4.2.6 build 20170905 and QTS 4.3.3.0299 build 20170901. This particular vulnerability allows a remote malicious user to execute commands on a QNAP NAS using a trans...
Qnap Qts
9.8
CVSSv3
CVE-2017-6359
QNAP QTS prior to 4.2.4 Build 20170313 allows malicious users to gain administrator privileges and execute arbitrary commands via unspecified vectors.
Qnap Qts
1 EDB exploit
6.5
CVSSv3
CVE-2024-21900
An injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578 buil...
Qnap Qts 5.1.3.2578
Qnap Quts Hero H5.1.3.2578
Qnap Qts
Qnap Quts Hero
Qnap Qutscloud
1 Article
7.5
CVSSv3
CVE-2017-13068
QNAP has already patched this vulnerability. This security concern allows a remote malicious user to perform an SQL injection on the application and obtain Helpdesk application information. A remote attacker does not require any privileges to successfully execute this attack.
Qnap Qts Helpdesk
1 EDB exploit
9.8
CVSSv3
CVE-2017-10700
In the medialibrary component in QNAP NAS 4.3.3.0229, an un-authenticated, remote attacker can execute arbitrary system commands as the root user of the NAS application.
Qnap Qts 4.3.3.0229
9.8
CVSSv3
CVE-2022-27596
A vulnerability has been reported to affect QNAP device running QuTS hero, QTS. If exploited, this vulnerability allows remote malicious users to inject malicious code. We have already fixed this vulnerability in the following versions of QuTS hero, QTS: QuTS hero h5.0.1.2248 bui...
Qnap Qts
Qnap Quts Hero
8.8
CVSSv3
CVE-2023-34971
An inadequate encryption strength vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local network clients to decrypt the data using brute force attacks via unspecified vectors. We have already fixed the vulnerability...
Qnap Quts Hero
Qnap Qts
6.5
CVSSv3
CVE-2023-34972
A cleartext transmission of sensitive information vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local network clients to read the contents of unexpected sensitive data via unspecified vectors. We have already fix...
Qnap Quts Hero
Qnap Qts
5.3
CVSSv3
CVE-2023-34973
An insufficient entropy vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows remote users to predict secret via unspecified vectors. We have already fixed the vulnerability in the following versions: QTS 5.0.1.2425 buil...
Qnap Quts Hero
Qnap Qts
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »