Critical severity9.8NVD Advisory· Published Dec 21, 2017· Updated Jun 17, 2026
CVE-2017-17030
CVE-2017-17030
Description
A buffer overflow vulnerability in login function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier could allow remote attackers to execute arbitrary code on NAS devices.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:o:qnap:qts:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:o:qnap:qts:*:*:*:*:*:*:*:*range: <=4.3.3.0378
- cpe:2.3:o:qnap:qts:4.3.4.0358:beta1:*:*:*:*:*:*
- cpe:2.3:o:qnap:qts:4.3.4.0370:beta1:*:*:*:*:*:*
- cpe:2.3:o:qnap:qts:4.3.4.0372:beta1:*:*:*:*:*:*
- cpe:2.3:o:qnap:qts:4.3.4.0374:beta1:*:*:*:*:*:*
- cpe:2.3:o:qnap:qts:4.3.4.0387:beta2:*:*:*:*:*:*
- (no CPE)range: 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier
- QNAP/QTS Login functionv5Range: 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier
Patches
Vulnerability mechanics
References
2- www.securitytracker.com/id/1040018nvdThird Party AdvisoryVDB Entry
- www.qnap.com/zh-tw/security-advisory/nas-201712-15nvdIssue TrackingVendor Advisory
News mentions
0No linked articles in our index yet.