Vulnerabilities > Qnap > Kazoo Server

DATE CVE VULNERABILITY TITLE RISK
2022-02-11 CVE-2021-38679 Improper Authentication vulnerability in Qnap Kazoo Server 4.10.12/4.10.9/4.11.20
An improper authentication vulnerability has been reported to affect QNAP NAS running Kazoo Server.
network
low complexity
qnap CWE-287
critical
 9.8
9.8
2021-12-29 CVE-2021-38680 Cross-site Scripting vulnerability in Qnap Kazoo Server 4.10.12/4.10.9
A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Kazoo Server.
network
low complexity
qnap CWE-79
6.1
6.1