Vulnerabilities > Qnap > Qutscloud > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-03-08 CVE-2024-21900 Injection vulnerability in Qnap QTS and Quts Hero
An injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-74
6.5
2024-02-02 CVE-2023-32967 Incorrect Authorization vulnerability in Qnap QTS and Qutscloud
An incorrect authorization vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-863
6.5
2024-02-02 CVE-2023-41274 NULL Pointer Dereference vulnerability in Qnap Qts, Quts Hero and Qutscloud
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-476
4.9
2024-02-02 CVE-2023-45026 Path Traversal vulnerability in Qnap Qts, Quts Hero and Qutscloud
A path traversal vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-22
4.9
2024-02-02 CVE-2023-45027 Path Traversal vulnerability in Qnap Qts, Quts Hero and Qutscloud
A path traversal vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-22
4.9
2024-02-02 CVE-2023-45028 Allocation of Resources Without Limits or Throttling vulnerability in Qnap Qts, Quts Hero and Qutscloud
An uncontrolled resource consumption vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-770
4.9
2024-02-02 CVE-2023-50359 Unchecked Return Value vulnerability in Qnap Qts, Quts Hero and Qutscloud
An unchecked return value vulnerability has been reported to affect several QNAP operating system versions.
local
low complexity
qnap CWE-252
6.7
2023-11-03 CVE-2023-39301 Server-Side Request Forgery (SSRF) vulnerability in Qnap QTS
A server-side request forgery (SSRF) vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-918
4.3
2023-10-13 CVE-2023-32970 NULL Pointer Dereference vulnerability in Qnap Qts, Quts Hero and Qutscloud
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-476
4.9
2022-05-05 CVE-2021-38693 Path Traversal vulnerability in Qnap QTS and Qutscloud
A path traversal vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero, QTS, QVR Pro Appliance.
network
low complexity
qnap CWE-22
5.0