qnap

635 tracked vulnerabilities.

CVE-2024-50399 HIGH
QNAP QTS and QuTS hero - Use of Externally-Controlled Format String
Nov 22, 2024
CVSS 7.2
EPSS 0.01
CVE-2024-50398 HIGH
QNAP QTS and QuTS hero - Use of Externally-Controlled Format String
Nov 22, 2024
CVSS 7.2
EPSS 0.01
CVE-2024-50397 HIGH
QNAP QTS and QuTS hero - Use of Externally-Controlled Format String
Nov 22, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-50396 HIGH
QNAP QTS and QuTS hero - Use of Externally-Controlled Format String
Nov 22, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-50395 HIGH
QNAP Media Streaming add-on 500.1.1.0-500.1.1.5 - Authorization Bypass via User-Controlled Key
Nov 22, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-48862 CRITICAL
QuLog Center 1.7.0.800-1.7.0.830 - Unauthenticated Path Traversal and Arbitrary File Write via Link Following
Nov 22, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-48861 HIGH
QNAP QuRouter < 2.4.4.106 - OS Command Injection
Nov 22, 2024
CVSS 7.8
EPSS 0.01
CVE-2024-48860 CRITICAL
QuRouter < 2.4.3.103 - OS Command Injection
Nov 22, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-38647 HIGH
QNAP AI Core <3.4.1 - Info Disclosure
Nov 22, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-38646 MEDIUM
Notes Station 3 <3.9.7 - Privilege Escalation
Nov 22, 2024
CVSS 6.0
EPSS 0.00
CVE-2024-38645 MEDIUM
Notes Station 3 3.9.0-3.9.6 - Authenticated Server-Side Request Forgery
Nov 22, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-38644 HIGH
Notes Station 3 <3.9.7 - Command Injection
Nov 22, 2024
CVSS 8.8
EPSS 0.02
CVE-2024-38643 CRITICAL
Notes Station 3 3.9.0-3.9.6 - Unauthenticated Remote Function Execution
Nov 22, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-37050 MEDIUM
QNAP QTS and QuTS hero - Stack-based Buffer Overflow
Nov 22, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-37049 MEDIUM
QNAP QTS and QuTS hero - Authenticated Remote Code Execution via Stack-based Buffer Overflow
Nov 22, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-37048 MEDIUM
QNAP QTS and QuTS hero - Denial of Service via NULL Pointer Dereference
Nov 22, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-37047 MEDIUM
QNAP QTS and QuTS hero - Authenticated Stack-based Buffer Overflow
Nov 22, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-37046 MEDIUM
QNAP QTS and QuTS hero - Authenticated Path Traversal
Nov 22, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-37045 MEDIUM
QNAP QTS and QuTS hero - Denial of Service via NULL Pointer Dereference
Nov 22, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-37044 HIGH
QNAP QTS and QuTS hero - Stack-based Buffer Overflow
Nov 22, 2024
CVSS 7.2
EPSS 0.01
CVE-2024-37043 MEDIUM
QNAP QTS and QuTS hero - Authenticated Path Traversal
Nov 22, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-37042 MEDIUM
QNAP QTS and QuTS hero - Denial of Service via NULL Pointer Dereference
Nov 22, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-37041 HIGH
QNAP QTS and QuTS hero - Heap-based Buffer Overflow
Nov 22, 2024
CVSS 7.2
EPSS 0.01
CVE-2024-32770 MEDIUM
QNAP Photo Station 6.4.0-6.4.2 - Authenticated Stored Cross-Site Scripting
Nov 22, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-32769 MEDIUM
QNAP Photo Station 6.4.0-6.4.2 - Authenticated Stored Cross-Site Scripting
Nov 22, 2024
CVSS 6.3
EPSS 0.00