Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-39296

Published: 05/01/2024 Updated: 11/01/2024
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Qnap

Vulnerability Summary

A prototype pollution vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to override existing attributes with ones that have incompatible type, which may lead to a crash via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578 build 20231110 and later QuTS hero h5.1.3.2578 build 20231110 and later

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

qnap qts 5.1.0.2348

qnap qts 5.1.0.2418

qnap qts 5.1.0.2399

qnap qts 5.1.0.2466

qnap qts 5.1.1.2491

qnap qts 5.1.0.2444

qnap qts 5.1.2.2533

qnap quts hero h5.1.0.2409

qnap quts hero h5.1.1.2488

qnap quts hero h5.1.0.2466

qnap quts hero h5.1.0.2453

qnap quts hero h5.1.0.2424

qnap quts hero h5.1.2.2534

References

CWE-1321https://www.qnap.com/en/security-advisory/qsa-23-64https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook