Vulnerabilities > Qnap
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-01 | CVE-2021-28802 | OS Command Injection vulnerability in Qnap QTS and Quts Hero A command injection vulnerabilities have been reported to affect QTS and QuTS hero. | 9.8 |
| 2021-07-01 | CVE-2021-28803 | Cross-site Scripting vulnerability in Qnap Q'Center This issue affects: QNAP Systems Inc. | 5.4 |
| 2021-07-01 | CVE-2021-28804 | OS Command Injection vulnerability in Qnap QTS and Quts Hero A command injection vulnerabilities have been reported to affect QTS and QuTS hero. | 9.8 |
| 2021-06-24 | CVE-2021-28800 | OS Command Injection vulnerability in Qnap QTS A command injection vulnerability has been reported to affect QNAP NAS running legacy versions of QTS. | 9.8 |
| 2021-06-16 | CVE-2021-28815 | Insecure Storage of Sensitive Information vulnerability in Qnap Myqnapcloud Link Insecure storage of sensitive information has been reported to affect QNAP NAS running myQNAPcloud Link. | 4.9 |
| 2021-06-11 | CVE-2021-28801 | Out-of-bounds Read vulnerability in Qnap QSS An out-of-bounds read vulnerability has been reported to affect certain QNAP switches running QSS. | 7.5 |
| 2021-06-11 | CVE-2021-28805 | Information Exposure vulnerability in Qnap QSS 1.0.2/1.0.3 Inclusion of sensitive information in the source code has been reported to affect certain QNAP switches running QSS. | 5.5 |
| 2021-06-11 | CVE-2021-28814 | Unspecified vulnerability in Qnap Helpdesk An improper access control vulnerability has been reported to affect QNAP NAS. | 8.8 |
| 2021-06-08 | CVE-2021-28810 | Authentication Bypass by Spoofing vulnerability in Qnap Roon Server If exploited, this vulnerability allows an attacker to access resources which are not otherwise accessible without proper authentication. | 7.5 |
| 2021-06-03 | CVE-2021-28806 | Cross-site Scripting vulnerability in Qnap QTS A DOM-based XSS vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero. | 5.4 |