Vulnerabilities > Qnap > Quts Hero > h4.5.0.1352
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-07-01 | CVE-2021-28804 | OS Command Injection vulnerability in Qnap QTS A command injection vulnerabilities have been reported to affect QTS and QuTS hero. | 7.5 |
2021-06-03 | CVE-2021-28806 | Cross-site Scripting vulnerability in Qnap QTS A DOM-based XSS vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero. | 3.5 |
2021-05-21 | CVE-2021-28798 | Path Traversal vulnerability in Qnap QTS and Quts Hero A relative path traversal vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero. | 7.5 |
2021-04-17 | CVE-2020-2509 | Command Injection vulnerability in Qnap QTS A command injection vulnerability has been reported to affect QTS and QuTS hero. | 9.8 |
2021-04-16 | CVE-2018-19942 | Cross-site Scripting vulnerability in Qnap QTS and Quts Hero A cross-site scripting (XSS) vulnerability has been reported to affect earlier versions of File Station. | 4.3 |
2020-12-10 | CVE-2020-2498 | Cross-site Scripting vulnerability in Qnap QTS and Quts Hero If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in certificate configuration. | 6.1 |
2020-12-10 | CVE-2019-7198 | Command Injection vulnerability in Qnap QTS and Quts Hero This command injection vulnerability allows attackers to execute arbitrary commands in a compromised application. | 7.5 |