Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qnap vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-14747
NULL Pointer Dereference vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and previous versions versions could allow remote malicious users to crash the NAS media server.
Qnap Qts 4.3.5
Qnap Qts 4.3.3
Qnap Qts 4.3.4
Qnap Qts 4.2.6
9.8
CVSSv3
CVE-2018-14749
Buffer Overflow vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and previous versions versions could have unspecified impact on the NAS.
Qnap Qts 4.3.5
Qnap Qts 4.3.4
Qnap Qts 4.3.3
Qnap Qts 4.2.6
9.8
CVSSv3
CVE-2018-14746
Command Injection vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and previous versions versions could allow remote malicious users to run arbitrary commands on the NAS.
Qnap Qts 4.3.5
Qnap Qts 4.3.4
Qnap Qts 4.3.3
Qnap Qts 4.2.6
7.5
CVSSv3
CVE-2018-14748
Improper Authorization vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and previous versions versions could allow remote malicious users to power off the NAS.
Qnap Qts 4.3.3
Qnap Qts 4.2.6
Qnap Qts 4.3.5
Qnap Qts 4.3.4
6.1
CVSSv3
CVE-2018-0716
Cross-site scripting vulnerability in QTS 4.2.6 build 20180711, QTS 4.3.3: Qsync Central 3.0.2, QTS 4.3.4: Qsync Central 3.0.3, QTS 4.3.5: Qsync Central 3.0.4 and previous versions versions could allow remote malicious users to inject Javascript code in the compromised applicatio...
Qnap Qts 4.3.4
Qnap Qts 4.2.6
Qnap Qts 4.3.5
Qnap Qts 4.3.3
8.8
CVSSv3
CVE-2021-28816
A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero. If exploited, this vulnerability allows malicious users to execute arbitrary code. We have already fixed this vulnerability in the following versions of QTS, QuTScloud...
Qnap Qts
Qnap Quts Hero
Qnap Qutscloud
7.2
CVSSv3
CVE-2023-32973
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the fo...
Qnap Quts Hero
Qnap Qts
Qnap Qutscloud
8.8
CVSSv3
CVE-2023-23362
An OS command injection vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability allows remote authenticated users to execute commands via susceptible QNAP devices. We have already fixed the vulnerability in the following versions: QTS 5.0...
Qnap Qutscloud
Qnap Qts
Qnap Quts Hero
7.2
CVSSv3
CVE-2021-34343
A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero. If exploited, this vulnerability allows malicious users to execute arbitrary code. We have already fixed this vulnerability in the following versions of QTS, QuTScloud...
Qnap Qts
Qnap Quts Hero
Qnap Qutscloud
5.3
CVSSv3
CVE-2021-38693
A path traversal vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero, QTS, QVR Pro Appliance. If exploited, this vulnerability allows malicious users to read the contents of unexpected files and expose sensitive data. We have already fixed this vuln...
Qnap Qutscloud
Qnap Qts
Qnap Quts Hero
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »