Vulnerabilities > Qnap

DATE CVE VULNERABILITY TITLE RISK
2024-02-02 CVE-2023-45026 Path Traversal vulnerability in Qnap Qts, Quts Hero and Qutscloud
A path traversal vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-22
4.9
4.9
2024-02-02 CVE-2023-45027 Path Traversal vulnerability in Qnap Qts, Quts Hero and Qutscloud
A path traversal vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-22
4.9
4.9
2024-02-02 CVE-2023-45028 Allocation of Resources Without Limits or Throttling vulnerability in Qnap Qts, Quts Hero and Qutscloud
An uncontrolled resource consumption vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-770
4.9
4.9
2024-02-02 CVE-2023-45035 Classic Buffer Overflow vulnerability in Qnap Qts, Quts Hero and Qutscloud
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-120
7.2
7.2
2024-02-02 CVE-2023-45036 Classic Buffer Overflow vulnerability in Qnap Qts, Quts Hero and Qutscloud
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-120
7.2
7.2
2024-02-02 CVE-2023-45037 Classic Buffer Overflow vulnerability in Qnap Qts, Quts Hero and Qutscloud
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-120
7.2
7.2
2024-02-02 CVE-2023-47561 Cross-site Scripting vulnerability in Qnap Photo Station
A cross-site scripting (XSS) vulnerability has been reported to affect Photo Station.
network
low complexity
qnap CWE-79
5.4
5.4
2024-02-02 CVE-2023-47562 Command Injection vulnerability in Qnap Photo Station
An OS command injection vulnerability has been reported to affect Photo Station.
network
low complexity
qnap CWE-77
8.8
8.8
2024-02-02 CVE-2023-47564 Incorrect Permission Assignment for Critical Resource vulnerability in Qnap Qsync Central
An incorrect permission assignment for critical resource vulnerability has been reported to affect Qsync Central.
network
low complexity
qnap CWE-732
8.1
8.1
2024-02-02 CVE-2023-47566 OS Command Injection vulnerability in Qnap Qts, Quts Hero and Qutscloud
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-78
7.2
7.2