Vulnerabilities > Qnap > Quts Hero

DATE CVE VULNERABILITY TITLE RISK
2024-09-06 CVE-2023-34974 OS Command Injection vulnerability in Qnap QTS and Quts Hero
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-78
8.8
8.8
2024-09-06 CVE-2023-34979 OS Command Injection vulnerability in Qnap QTS and Quts Hero
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-78
7.2
7.2
2024-09-06 CVE-2023-39298 Missing Authorization vulnerability in Qnap QTS and Quts Hero
A missing authorization vulnerability has been reported to affect several QNAP operating system versions.
local
low complexity
qnap CWE-862
7.8
7.8
2024-09-06 CVE-2023-50366 Cross-site Scripting vulnerability in Qnap QTS and Quts Hero
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-79
4.8
4.8
2024-09-06 CVE-2023-51366 Path Traversal vulnerability in Qnap QTS and Quts Hero
A path traversal vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-22
6.5
6.5
2024-09-06 CVE-2023-51367 Stack-based Buffer Overflow vulnerability in Qnap QTS and Quts Hero
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-121
8.8
8.8
2024-09-06 CVE-2023-51368 NULL Pointer Dereference vulnerability in Qnap QTS and Quts Hero
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-476
6.5
6.5
2024-09-06 CVE-2024-21897 Cross-site Scripting vulnerability in Qnap QTS and Quts Hero
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-79
5.4
5.4
2024-09-06 CVE-2024-21898 OS Command Injection vulnerability in Qnap QTS and Quts Hero
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-78
8.8
8.8
2024-09-06 CVE-2024-21903 Command Injection vulnerability in Qnap QTS and Quts Hero
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-77
4.7
4.7