Vulnerabilities > Qnap > QTS > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-06 | CVE-2023-32972 | Out-of-bounds Write vulnerability in Qnap QTS and Quts Hero A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. | 7.2 |
| 2023-09-22 | CVE-2023-23362 | OS Command Injection vulnerability in Qnap QTS and Qutscloud An OS command injection vulnerability has been reported to affect QNAP operating systems. | 8.8 |
| 2023-08-24 | CVE-2023-34971 | Inadequate Encryption Strength vulnerability in Qnap QTS and Quts Hero An inadequate encryption strength vulnerability has been reported to affect QNAP operating systems. | 8.8 |
| 2023-03-29 | CVE-2023-23355 | Command Injection vulnerability in Qnap products An OS command injection vulnerability has been reported to affect QNAP operating systems. | 7.2 |
| 2022-05-05 | CVE-2021-44051 | Command Injection vulnerability in Qnap Qts, Quts Hero and Qutscloud A command injection vulnerability has been reported to affect QNAP NAS running QuTScloud, QuTS hero and QTS. | 8.8 |
| 2022-05-05 | CVE-2021-44052 | Link Following vulnerability in Qnap Qts, Quts Hero and Qutscloud An improper link resolution before file access ('Link Following') vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero, and QTS. | 8.1 |
| 2021-09-10 | CVE-2021-28816 | Out-of-bounds Write vulnerability in Qnap Qts, Quts Hero and Qutscloud A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero. | 8.8 |
| 2021-09-10 | CVE-2021-34343 | Out-of-bounds Write vulnerability in Qnap Qts, Quts Hero and Qutscloud A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero. | 7.2 |
| 2021-05-21 | CVE-2021-28798 | Path Traversal vulnerability in Qnap QTS and Quts Hero A relative path traversal vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero. | 7.5 |
| 2021-01-11 | CVE-2020-2508 | Command Injection vulnerability in Qnap QTS A command injection vulnerability has been reported to affect QTS and QuTS hero. | 7.2 |