Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qts vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2017-17029
A buffer overflow vulnerability in login function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and previous versions could allow remote malicious users to execute arbitrary code on NAS devices.
Qnap Qts 4.3.4.0372
Qnap Qts 4.3.4.0374
Qnap Qts 4.3.4.0358
Qnap Qts 4.3.4.0387
Qnap Qts 4.3.4.0370
Qnap Qts
668
VMScore
CVE-2017-17033
A buffer overflow vulnerability in password function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and previous versions could allow remote malicious users to execute arbitrary code on NAS devices.
Qnap Qts 4.3.4.0370
Qnap Qts 4.3.4.0374
Qnap Qts 4.3.4.0387
Qnap Qts
Qnap Qts 4.3.4.0372
Qnap Qts 4.3.4.0358
668
VMScore
CVE-2017-17027
A buffer overflow vulnerability in FTP service in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and previous versions could allow remote malicious users to execute arbitrary code on NAS devices.
Qnap Qts 4.3.4.0370
Qnap Qts 4.3.4.0374
Qnap Qts 4.3.4.0358
Qnap Qts 4.3.4.0387
Qnap Qts
Qnap Qts 4.3.4.0372
668
VMScore
CVE-2017-17031
A buffer overflow vulnerability in password function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and previous versions could allow remote malicious users to execute arbitrary code on NAS devices.
Qnap Qts 4.3.4.0374
Qnap Qts 4.3.4.0387
Qnap Qts 4.3.4.0370
Qnap Qts 4.3.4.0372
Qnap Qts 4.3.4.0358
Qnap Qts
668
VMScore
CVE-2017-17028
A buffer overflow vulnerability in external device function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and previous versions could allow remote malicious users to execute arbitrary code on NAS devices.
Qnap Qts 4.3.4.0370
Qnap Qts 4.3.4.0374
Qnap Qts 4.3.4.0387
Qnap Qts
Qnap Qts 4.3.4.0372
Qnap Qts 4.3.4.0358
NA
CVE-2023-23369
An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following versions: Multimedia Console 2.1...
Qnap Qts 5.1.0.2348
Qnap Qts 4.3.6.1831
Qnap Qts 4.3.6.1750
Qnap Qts 4.3.6.1711
Qnap Qts 4.3.6.1663
Qnap Qts 4.3.6.2050
Qnap Qts 4.3.6.1965
Qnap Qts 4.3.6.1907
Qnap Qts 4.3.6.2232
Qnap Qts 4.3.6.1620
Qnap Qts 4.3.6.1446
Qnap Qts 4.3.6.1411
Qnap Qts 4.3.6.1333
Qnap Qts 4.3.6.1286
Qnap Qts 4.3.6.1263
Qnap Qts 4.3.6.1218
Qnap Qts 4.3.6.1154
Qnap Qts 4.3.6.1070
Qnap Qts 4.3.6.1033
Qnap Qts 4.3.6.1013
Qnap Qts 4.3.6.0993
Qnap Qts 4.3.6.0979
312
VMScore
CVE-2019-7197
A stored cross-site scripting (XSS) vulnerability has been reported to affect multiple versions of QTS. If exploited, this vulnerability may allow an malicious user to inject and execute scripts on the administrator console. To fix this vulnerability, QNAP recommend updating QTS ...
Qnap Qts 4.2.6
Qnap Qts 4.3.3
Qnap Qts 4.3.4
Qnap Qts 4.3.6
Qnap Qts 4.4.1
445
VMScore
CVE-2018-14747
NULL Pointer Dereference vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and previous versions versions could allow remote malicious users to crash the NAS media server.
Qnap Qts 4.3.5
Qnap Qts 4.3.3
Qnap Qts 4.3.4
Qnap Qts 4.2.6
694
VMScore
CVE-2018-14748
Improper Authorization vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and previous versions versions could allow remote malicious users to power off the NAS.
Qnap Qts 4.3.3
Qnap Qts 4.2.6
Qnap Qts 4.3.5
Qnap Qts 4.3.4
383
VMScore
CVE-2018-0716
Cross-site scripting vulnerability in QTS 4.2.6 build 20180711, QTS 4.3.3: Qsync Central 3.0.2, QTS 4.3.4: Qsync Central 3.0.3, QTS 4.3.5: Qsync Central 3.0.4 and previous versions versions could allow remote malicious users to inject Javascript code in the compromised applicatio...
Qnap Qts 4.3.4
Qnap Qts 4.2.6
Qnap Qts 4.3.5
Qnap Qts 4.3.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »