Vulnerabilities > Qnap > QTS > High

DATE CVE VULNERABILITY TITLE RISK
2024-09-06 CVE-2023-34974 OS Command Injection vulnerability in Qnap QTS and Quts Hero
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-78
8.8
8.8
2024-09-06 CVE-2023-34979 OS Command Injection vulnerability in Qnap QTS and Quts Hero
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-78
7.2
7.2
2024-09-06 CVE-2023-39298 Missing Authorization vulnerability in Qnap QTS and Quts Hero
A missing authorization vulnerability has been reported to affect several QNAP operating system versions.
local
low complexity
qnap CWE-862
7.8
7.8
2024-09-06 CVE-2023-39300 OS Command Injection vulnerability in Qnap QTS
An OS command injection vulnerability has been reported to affect legacy QTS.
network
low complexity
qnap CWE-78
7.2
7.2
2024-09-06 CVE-2023-51367 Stack-based Buffer Overflow vulnerability in Qnap QTS and Quts Hero
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-121
8.8
8.8
2024-09-06 CVE-2024-21898 OS Command Injection vulnerability in Qnap QTS and Quts Hero
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-78
8.8
8.8
2024-09-06 CVE-2024-32763 Heap-based Buffer Overflow vulnerability in Qnap QTS and Quts Hero
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-122
8.8
8.8
2024-09-06 CVE-2024-38641 Command Injection vulnerability in Qnap QTS and Quts Hero
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
local
low complexity
qnap CWE-77
7.8
7.8
2024-05-21 CVE-2024-21902 Incorrect Permission Assignment for Critical Resource vulnerability in Qnap QTS and Quts Hero
An incorrect permission assignment for critical resource vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-732
8.1
8.1
2024-05-21 CVE-2024-27127 Double Free vulnerability in Qnap QTS and Quts Hero
A double free vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-415
8.8
8.8