Vulnerabilities > Qnap > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-03-08 CVE-2024-21899 Unspecified vulnerability in Qnap QTS and Quts Hero
An improper authentication vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap
critical
 9.8
9.8
2024-02-02 CVE-2023-39303 Unspecified vulnerability in Qnap Qts, Quts Hero and Qutscloud
An improper authentication vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap
critical
 9.8
9.8
2024-02-02 CVE-2023-45025 Unspecified vulnerability in Qnap Qts, Quts Hero and Qutscloud
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap
critical
 9.8
9.8
2023-11-03 CVE-2023-23368 Unspecified vulnerability in Qnap Qts, Quts Hero and Qutscloud
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap
critical
 9.8
9.8
2023-11-03 CVE-2023-23369 OS Command Injection vulnerability in Qnap QTS
An OS command injection vulnerability has been reported to affect several QNAP operating system versions.
network
low complexity
qnap CWE-78
critical
 9.8
9.8
2023-09-22 CVE-2023-23363 Classic Buffer Overflow vulnerability in Qnap QTS
A buffer copy without checking size of input vulnerability has been reported to affect QNAP operating system.
network
low complexity
qnap CWE-120
critical
 9.8
9.8
2023-09-22 CVE-2023-23364 Classic Buffer Overflow vulnerability in Qnap Multimedia Console
A buffer copy without checking size of input vulnerability has been reported to affect QNAP operating systems.
network
low complexity
qnap CWE-120
critical
 9.8
9.8
2023-01-30 CVE-2022-27596 SQL Injection vulnerability in Qnap QTS and Quts Hero
A vulnerability has been reported to affect QNAP device running QuTS hero, QTS.
network
low complexity
qnap CWE-89
critical
 9.8
9.8
2022-09-08 CVE-2022-27593 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Qnap Photo Station
An externally controlled reference to a resource vulnerability has been reported to affect QNAP NAS running Photo Station.
network
low complexity
qnap CWE-610
critical
 9.1
9.1
2022-05-05 CVE-2021-44055 Missing Authorization vulnerability in Qnap Video Station
An missing authorization vulnerability has been reported to affect QNAP device running Video Station.
network
low complexity
qnap CWE-862
critical
 9.8
9.8