Vulnerabilities > Qnap > QTS > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-09-06 CVE-2023-50366 Cross-site Scripting vulnerability in Qnap QTS and Quts Hero
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-79
4.8
2024-09-06 CVE-2023-51366 Path Traversal vulnerability in Qnap QTS and Quts Hero
A path traversal vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-22
6.5
2024-09-06 CVE-2023-51368 NULL Pointer Dereference vulnerability in Qnap QTS and Quts Hero
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-476
6.5
2024-09-06 CVE-2024-21897 Cross-site Scripting vulnerability in Qnap QTS and Quts Hero
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-79
5.4
2024-09-06 CVE-2024-21903 Command Injection vulnerability in Qnap QTS and Quts Hero
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-77
4.7
2024-09-06 CVE-2024-21904 Path Traversal vulnerability in Qnap QTS and Quts Hero
A path traversal vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-22
6.5
2024-09-06 CVE-2024-21906 OS Command Injection vulnerability in Qnap QTS and Quts Hero
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-78
4.7
2024-03-08 CVE-2024-21900 Unspecified vulnerability in Qnap QTS and Quts Hero
An injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap
6.5
2024-03-08 CVE-2024-21901 Unspecified vulnerability in Qnap QTS
A SQL injection vulnerability has been reported to affect myQNAPcloud.
network
low complexity
qnap
4.7
2024-02-02 CVE-2023-32967 Incorrect Authorization vulnerability in Qnap QTS and Qutscloud
An incorrect authorization vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-863
6.5