Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / qnap

qnap

613 tracked vulnerabilities.

CVE-2023-32972 LOW

QNAP QTS/QuTS Authenticated Stack-based Buffer Overflow

CVE-2023-32971 LOW

QNAP QTS 4.5.0-4.5.4.2466 and 5.0.0-5.0.1.2424 - Authenticated Stack-based Buffer Overflow

CVE-2023-23371 MEDIUM

QVPN 2.2.0-2.2.0.0823 - Authenticated Cleartext Transmission of Sensitive Information

CVE-2023-23370 MEDIUM

QVPN 2.1.0-2.1.0.0518 - Authenticated Credential Exposure via Local Access

CVE-2023-23366 HIGH

Music Station 5.3.0-5.3.21 - Authenticated Path Traversal

CVE-2023-23365 HIGH

QNAP Music Station 5.3.0-5.3.21 - Authenticated Path Traversal

CVE-2023-23364 HIGH

QNAP Multimedia Console < 1.4.7 - Remote Code Execution via Buffer Overflow

CVE-2023-23363 HIGH

QNAP QTS 4.3.3-4.3.3.2420 - Remote Code Execution via Buffer Overflow

CVE-2023-23362 HIGH

QNAP QTS 4.5.4-4.5.4.2374 and QTS 5.0.1-5.0.1.2376 - Authenticated OS Command Injection

CVE-2023-34973 LOW

QNAP QTS 5.0.1-5.0.1.2424 and QTS 5.1.0-5.1.0.2443 - Insufficient Entropy

CVE-2023-34972 LOW

QNAP QTS 5.0.1-5.0.1.2424 and QuTS hero h5.1.0-h5.1.0.2423 - Cleartext Transmission of Sensitive Information

CVE-2023-34971 HIGH

QNAP QTS 4.5.4-4.5.4.2467 and QuTS hero h4.5.4-h4.5.4.2476 - Inadequate Encryption Strength

CVE-2023-23355 MEDIUM

QNAP QVR - Authenticated OS Command Injection

CVE-2022-27600 MEDIUM

QNAP QTS 4.5.1-4.5.4.2280 and QTS 5.0.1-5.0.1.2277 - Denial of Service via Uncontrolled Resource Consumption

CVE-2022-27595 HIGH

QVPN < 2.0.0.1316 - Uncontrolled Search Path Element

CVE-2022-27592 MEDIUM

QVR Smart Client 2.4.0-2.4.0.0570 - Authenticated Unquoted Search Path or Element

CVE-2022-27599 MEDIUM

QVR Pro Client < 2.3.0.0420 - Authenticated Sensitive Information Disclosure via Log File

CVE-2022-27598 LOW

QNAP QTS < 5.0.1.2346 and QuTS hero < h5.0.1.2348 - Authenticated Out-of-bounds Read

CVE-2022-27597 LOW

QNAP QVR - Authenticated Out-of-bounds Read

CVE-2022-27596 CRITICAL

QNAP QTS 5.0.1-5.0.1.2234 and QuTS hero h5.0.1-h5.0.1.2248 - SQL Injection

CVE-2022-27593 CRITICAL KEVNUCLEI

QNAP Photo Station < 5.2.14 - Arbitrary File Write

CVE-2022-27588 CRITICAL

QVR < 5.1.6 - OS Command Injection

CVE-2021-34360 MEDIUM

QNAP NAS Proxy Server 1.4.0-1.4.1 - Cross-Site Request Forgery

CVE-2021-44057 HIGH

QNAP Photo Station < 5.4.13 - Improper Authentication

CVE-2021-44056 HIGH

QNAP Video Station < 5.1.8 - Improper Authentication

Previous Page 17 of 25 Next

Products

qts 272 quts_hero 223 qsync_central 62 qutscloud 62 file_station 48 photo_station 26 video_station 15 media_streaming_add-on 13 music_station 13 qurouter 12 helpdesk 11 qumagie 10 qvr 10 qulog_center 8 nas_proxy_server 7 q\'center 7 hybrid_backup_sync 6 notes_station_3 6 qvr_pro 6 license_center 5 multimedia_console 5 qunetswitch 5 qvr_elite 5 qvr_guard 5 qes 4 download_station 3 qcalagent 3 qufirewall 3 qvp-21a_firmware 3 qvp-41a_firmware 3

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy