Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qnap vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-39296
A prototype pollution vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to override existing attributes with ones that have incompatible type, which may lead to a crash via a network. We have alread...
Qnap Qts 5.1.0.2348
Qnap Qts 5.1.0.2418
Qnap Qts 5.1.0.2399
Qnap Qts 5.1.0.2466
Qnap Qts 5.1.1.2491
Qnap Qts 5.1.0.2444
Qnap Qts 5.1.2.2533
Qnap Quts Hero H5.1.0.2409
Qnap Quts Hero H5.1.1.2488
Qnap Quts Hero H5.1.0.2466
Qnap Quts Hero H5.1.0.2453
Qnap Quts Hero H5.1.0.2424
Qnap Quts Hero H5.1.2.2534
7.2
CVSSv3
CVE-2023-32968
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the fo...
Qnap Qts 5.1.0.2348
Qnap Qts 5.1.0.2418
Qnap Qts 5.1.0.2399
Qnap Qts 5.1.0.2466
Qnap Qts 5.1.1.2491
Qnap Qts 5.1.0.2444
Qnap Qts 5.0.1.2346
Qnap Qts 5.0.1.2277
Qnap Qts 5.0.1.2248
Qnap Qts 5.0.1.2234
Qnap Qts 5.0.1.2194
Qnap Qts 5.0.1.2173
Qnap Qts 5.0.1.2145
Qnap Qts 5.0.1.2137
Qnap Qts 5.0.1.2131
Qnap Qts 5.0.1.2079
Qnap Qts 5.0.1.2034
Qnap Qts 5.0.1.2376
Qnap Qts 5.0.1.2425
Qnap Quts Hero H5.1.0.2409
Qnap Quts Hero H5.1.1.2488
Qnap Quts Hero H5.1.0.2466
8.8
CVSSv3
CVE-2023-47565
An OS command injection vulnerability has been found to affect legacy QNAP VioStor NVR models running QVR Firmware 4.x. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following vers...
Qnap Qvr Firmware
7.2
CVSSv3
CVE-2023-32975
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the fo...
Qnap Qts 5.1.0.2348
Qnap Qts 5.1.0.2418
Qnap Qts 5.1.0.2399
Qnap Qts 5.1.0.2466
Qnap Qts 5.1.1.2491
Qnap Qts 5.1.0.2444
Qnap Qts 5.0.1.2346
Qnap Qts 5.0.1.2277
Qnap Qts 5.0.1.2248
Qnap Qts 5.0.1.2234
Qnap Qts 5.0.1.2194
Qnap Qts 5.0.1.2173
Qnap Qts 5.0.1.2145
Qnap Qts 5.0.1.2137
Qnap Qts 5.0.1.2131
Qnap Qts 5.0.1.2079
Qnap Qts 5.0.1.2034
Qnap Qts 5.0.1.2376
Qnap Qts 5.0.1.2425
Qnap Quts Hero H5.1.0.2409
Qnap Quts Hero H5.1.1.2488
Qnap Quts Hero H5.1.0.2466
6.1
CVSSv3
CVE-2023-23372
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to inject malicious code via a network. We have already fixed the vulnerability in the following versions: QTS 5.0.1.24...
Qnap Qts 5.1.0.2348
Qnap Qts 5.1.0.2418
Qnap Qts 5.1.0.2399
Qnap Qts 5.0.1.2346
Qnap Qts 5.0.1.2277
Qnap Qts 5.0.1.2248
Qnap Qts 5.0.1.2234
Qnap Qts 5.0.1.2194
Qnap Qts 5.0.1.2173
Qnap Qts 5.0.1.2145
Qnap Qts 5.0.1.2137
Qnap Qts 5.0.1.2131
Qnap Qts 5.0.1.2079
Qnap Qts 5.0.1.2034
Qnap Qts 5.0.1.2376
Qnap Qts 4.5.4.2280
Qnap Qts 4.5.4.2117
Qnap Qts 4.5.4.2012
Qnap Qts 4.5.4.1931
Qnap Qts 4.5.4.1800
Qnap Qts 4.5.4.1787
Qnap Qts 4.5.4.1741
8.8
CVSSv3
CVE-2023-41284
A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following version: QuMagie 2.1.4 and later
Qnap Qumagie
8.8
CVSSv3
CVE-2023-39295
An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following version: QuMagie 2.1.3 and later
Qnap Qumagie
8.8
CVSSv3
CVE-2023-41285
A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following version: QuMagie 2.1.4 and later
Qnap Qumagie
7.2
CVSSv3
CVE-2023-23367
An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions:...
Qnap Qts 5.0.1.2346
Qnap Qts 5.0.1.2277
Qnap Qts 5.0.1.2248
Qnap Qts 5.0.1.2234
Qnap Qts 5.0.1.2194
Qnap Qts 5.0.1.2173
Qnap Qts 5.0.1.2145
Qnap Qts 5.0.1.2137
Qnap Qts 5.0.1.2131
Qnap Qts 5.0.1.2079
Qnap Qts 5.0.1.2034
Qnap Qts 5.0.0.1870
Qnap Qts 5.0.0.1858
Qnap Qts 5.0.0.1853
Qnap Qts 5.0.0.1850
Qnap Qts 5.0.0.1837
Qnap Qts 5.0.0.1828
Qnap Qts 5.0.0.1808
Qnap Qts 5.0.0.1785
Qnap Qts 5.0.0.1716
Qnap Quts Hero H5.0.1.2348
Qnap Quts Hero H5.0.1.2277
7.5
CVSSv3
CVE-2023-39299
A path traversal vulnerability has been reported to affect Music Station. If exploited, the vulnerability could allow users to read the contents of unexpected files and expose sensitive data via a network. We have already fixed the vulnerability in the following versions: Music S...
Qnap Music Station
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »