Vulnerabilities > Qnap > High

DATE CVE VULNERABILITY TITLE RISK
2021-10-22 CVE-2021-34362 Command Injection vulnerability in Qnap Media Streaming Add-On
A command injection vulnerability has been reported to affect QNAP device running Media Streaming add-on.
network
low complexity
qnap CWE-77
7.2
2021-09-27 CVE-2021-34349 Command Injection vulnerability in Qnap QVR
A command injection vulnerability has been reported to affect QNAP device running QVR.
network
low complexity
qnap CWE-77
7.2
2021-09-10 CVE-2021-28813 Insecure Storage of Sensitive Information vulnerability in Qnap Qsw-M2116P-2T2S Firmware and Qunetswitch
A vulnerability involving insecure storage of sensitive information has been reported to affect QSW-M2116P-2T2S and QNAP switches running QuNetSwitch.
network
low complexity
qnap CWE-922
7.5
2021-09-10 CVE-2021-28816 Out-of-bounds Write vulnerability in Qnap Qts, Quts Hero and Qutscloud
A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero.
network
low complexity
qnap CWE-787
8.8
2021-09-10 CVE-2021-34343 Out-of-bounds Write vulnerability in Qnap Qts, Quts Hero and Qutscloud
A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero.
network
low complexity
qnap CWE-787
7.2
2021-06-11 CVE-2021-28801 Unspecified vulnerability in Qnap QSS
An out-of-bounds read vulnerability has been reported to affect certain QNAP switches running QSS.
network
low complexity
qnap
7.5
2021-06-11 CVE-2021-28814 Unspecified vulnerability in Qnap Helpdesk
An improper access control vulnerability has been reported to affect QNAP NAS.
network
low complexity
qnap
8.8
2021-06-08 CVE-2021-28810 Unspecified vulnerability in Qnap Roon Server
If exploited, this vulnerability allows an attacker to access resources which are not otherwise accessible without proper authentication.
network
low complexity
qnap
7.5
2021-06-03 CVE-2021-28812 Command Injection vulnerability in Qnap Video Station
A command injection vulnerability has been reported to affect certain versions of Video Station.
network
low complexity
qnap CWE-77
8.8
2021-05-21 CVE-2021-28798 Path Traversal vulnerability in Qnap QTS and Quts Hero
A relative path traversal vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero.
network
low complexity
qnap CWE-22
7.5