Vulnerabilities > Qnap > QES
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-24 | CVE-2020-2505 | Information Exposure Through an Error Message vulnerability in Qnap QES 2.1.1 If exploited, this vulnerability could allow attackers to gain sensitive information via generation of error messages. | 2.1 |
| 2020-12-24 | CVE-2020-2504 | Path Traversal vulnerability in Qnap QES 2.1.1 If exploited, this absolute path traversal vulnerability could allow attackers to traverse files in File Station. | 5.0 |
| 2020-12-24 | CVE-2020-2503 | Cross-site Scripting vulnerability in Qnap QES 2.1.1 If exploited, this stored cross-site scripting vulnerability could allow remote attackers to inject malicious code in File Station. | 3.5 |
| 2020-12-24 | CVE-2020-2499 | Use of Hard-coded Credentials vulnerability in Qnap QES 2.1.1 A hard-coded password vulnerability has been reported to affect earlier versions of QES. | 4.0 |