Vulnerabilities > Qnap > Quts Hero > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-02-02 CVE-2023-45027 Unspecified vulnerability in Qnap Qts, Quts Hero and Qutscloud
A path traversal vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap
4.9
2024-02-02 CVE-2023-45028 Allocation of Resources Without Limits or Throttling vulnerability in Qnap Qts, Quts Hero and Qutscloud
An uncontrolled resource consumption vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-770
4.9
2024-02-02 CVE-2023-50359 Unchecked Return Value vulnerability in Qnap Qts, Quts Hero and Qutscloud
An unchecked return value vulnerability has been reported to affect several QNAP operating system versions.
local
low complexity
qnap CWE-252
6.7
2023-12-08 CVE-2023-23372 Cross-site Scripting vulnerability in Qnap QTS and Quts Hero
A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-79
6.1
2023-11-03 CVE-2023-39301 Unspecified vulnerability in Qnap QTS
A server-side request forgery (SSRF) vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap
4.3
2023-10-13 CVE-2023-32970 NULL Pointer Dereference vulnerability in Qnap QTS and Quts Hero
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-476
4.9
2023-08-24 CVE-2023-34972 Cleartext Transmission of Sensitive Information vulnerability in Qnap QTS and Quts Hero
A cleartext transmission of sensitive information vulnerability has been reported to affect QNAP operating systems.
low complexity
qnap CWE-319
6.5
2023-08-24 CVE-2023-34973 Insufficient Entropy vulnerability in Qnap QTS and Quts Hero
An insufficient entropy vulnerability has been reported to affect QNAP operating systems.
network
low complexity
qnap CWE-331
5.3
2022-05-05 CVE-2021-38693 Path Traversal vulnerability in Qnap QTS and Qutscloud
A path traversal vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero, QTS, QVR Pro Appliance.
network
low complexity
qnap CWE-22
5.3
2022-05-05 CVE-2021-44053 Cross-site Scripting vulnerability in Qnap Qts, Quts Hero and Qutscloud
A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running QTS, QuTS hero and QuTScloud.
network
low complexity
qnap CWE-79
6.1