qnap

613 tracked vulnerabilities.

CVE-2021-34357 MEDIUM
QNAP QmailAgent < 3.0.2 - Cross-Site Scripting
Nov 13, 2021
CVSS 6.9
EPSS 0.00
CVE-2021-34362 HIGH
QNAP Media Streaming add-on < 500.0.0.3 - OS Command Injection
Oct 22, 2021
CVSS 8.7
EPSS 0.01
CVE-2021-38675 MEDIUM
QNAP Image2PDF < 2.1.5 - Cross-Site Scripting
Oct 01, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-34356 HIGH
QNAP Photo Station < 6.0.18 - Cross-Site Scripting
Oct 01, 2021
CVSS 7.6
EPSS 0.00
CVE-2021-34355 HIGH
QNAP Photo Station < 5.4.10 - Cross-Site Scripting
Oct 01, 2021
CVSS 7.6
EPSS 0.00
CVE-2021-34354 HIGH
QNAP Photo Station < 6.0.18 - Cross-Site Scripting
Oct 01, 2021
CVSS 7.6
EPSS 0.00
CVE-2021-34352 HIGH
QVR < 5.1.5 - OS Command Injection
Oct 01, 2021
CVSS 7.2
EPSS 0.04
CVE-2021-34351 CRITICAL
QNAP QVR < 5.1.5 - OS Command Injection
Sep 27, 2021
CVSS 9.8
EPSS 0.02
CVE-2021-34349 HIGH
QNAP QVR < 5.1.5 - OS Command Injection
Sep 27, 2021
CVSS 7.2
EPSS 0.01
CVE-2021-34348 CRITICAL
QNAP QVR < 5.1.5 - OS Command Injection
Sep 27, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-34346 CRITICAL
QNAP NVR Storage Expansion < 1.0.6 - Remote Code Execution via Stack Buffer Overflow
Sep 10, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-34345 CRITICAL
QNAP NVR Storage Expansion < 1.0.6 - Remote Code Execution via Stack Buffer Overflow
Sep 10, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-34344 CRITICAL
QNAP QUSBCam2 < 1.1.4 - Stack Buffer Overflow
Sep 10, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-34343 MEDIUM
QNAP QTS < 4.3.3.1693, QuTS hero < h4.5.4.1771, QuTScloud < c4.5.6.1755 - RCE via Stack Buffer Overflow
Sep 10, 2021
CVSS 6.0
EPSS 0.00
CVE-2021-28816 HIGH
Qnap Qts < 4.3.3.1693 - Out-of-Bounds Write
Sep 10, 2021
CVSS 7.6
EPSS 0.01
CVE-2021-28813 CRITICAL
QSW-M2116P-2T2S, QNAP switches - Info Disclosure
Sep 10, 2021
CVSS 9.6
EPSS 0.00
CVE-2021-28809 CRITICAL
QNAP Hybrid Backup Sync < 3.0.210507 - Improper Access Control
Jul 08, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-28804 CRITICAL
QNAP QTS < 4.5.1.1540 and QuTS hero < h4.5.1.1582 - OS Command Injection
Jul 01, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-28803 MEDIUM
QNAP Q'center < 1.11.1004 - Cross-Site Scripting
Jul 01, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-28802 CRITICAL
QNAP QTS < 4.5.1.1540 and QuTS hero < h4.5.1.1582 - OS Command Injection
Jul 01, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-28800 HIGH
QNAP QTS < 4.3.3.1624 - OS Command Injection
Jun 24, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-28815 MEDIUM
QNAP myQNAPcloud Link <2.2.21 - Info Disclosure
Jun 16, 2021
CVSS 6.0
EPSS 0.00
CVE-2021-28814 HIGH
QNAP Helpdesk < 3.0.4 - Improper Privilege Management
Jun 11, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-28805 HIGH
QNAP Systems Inc. QSS <1.0.3 - Info Disclosure
Jun 11, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-28801 LOW
QNAP QSS < 1.0.2 - Out-of-bounds Read
Jun 11, 2021
CVSS 3.1
EPSS 0.00
Products
qts 272 quts_hero 223 qsync_central 62 qutscloud 62 file_station 48 photo_station 26 video_station 15 media_streaming_add-on 13 music_station 13 qurouter 12 helpdesk 11 qumagie 10 qvr 10 qulog_center 8 nas_proxy_server 7 q\'center 7 hybrid_backup_sync 6 notes_station_3 6 qvr_pro 6 license_center 5 multimedia_console 5 qunetswitch 5 qvr_elite 5 qvr_guard 5 qes 4 download_station 3 qcalagent 3 qufirewall 3 qvp-21a_firmware 3 qvp-41a_firmware 3
Quick Filters
Critical CVEs With Exploits In CISA KEV