Vulnerabilities > Qnap > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-06 | CVE-2023-23371 | Cleartext Transmission of Sensitive Information vulnerability in Qnap Qvpn 2.2.0 A cleartext transmission of sensitive information vulnerability has been reported to affect QVPN Device Client. | 4.4 |
| 2023-09-08 | CVE-2022-27599 | Information Exposure Through Log Files vulnerability in Qnap QVR PRO Client An insertion of sensitive information into Log file vulnerability has been reported to affect product. | 4.4 |
| 2023-08-24 | CVE-2023-34972 | Cleartext Transmission of Sensitive Information vulnerability in Qnap QTS and Quts Hero A cleartext transmission of sensitive information vulnerability has been reported to affect QNAP operating systems. | 6.5 |
| 2023-08-24 | CVE-2023-34973 | Insufficient Entropy vulnerability in Qnap QTS and Quts Hero An insufficient entropy vulnerability has been reported to affect QNAP operating systems. | 5.3 |
| 2022-05-05 | CVE-2021-38693 | Path Traversal vulnerability in Qnap QTS and Qutscloud A path traversal vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero, QTS, QVR Pro Appliance. | 5.3 |
| 2022-05-05 | CVE-2021-44053 | Cross-site Scripting vulnerability in Qnap Qts, Quts Hero and Qutscloud A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running QTS, QuTS hero and QuTScloud. | 6.1 |
| 2022-05-05 | CVE-2021-44054 | Open Redirect vulnerability in Qnap Qts, Quts Hero and Qutscloud An open redirect vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero and QTS. | 6.1 |
| 2022-02-25 | CVE-2021-34359 | Cross-site Scripting vulnerability in Qnap NAS Proxy Server 1.3.0 A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Proxy Server. | 5.4 |
| 2022-02-25 | CVE-2021-34361 | Cross-site Scripting vulnerability in Qnap NAS Proxy Server 1.3.0 A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Proxy Server. | 6.1 |
| 2022-01-14 | CVE-2021-38677 | Cross-site Scripting vulnerability in Qnap Qcalagent A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running QcalAgent. | 6.1 |