VYPR
Critical severity9.8NVD Advisory· Published Dec 21, 2017· Updated Jun 17, 2026

CVE-2017-17031

CVE-2017-17031

Description

A buffer overflow vulnerability in password function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier could allow remote attackers to execute arbitrary code on NAS devices.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8
  • Qnap/Qts7 versions
    cpe:2.3:o:qnap:qts:*:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:o:qnap:qts:*:*:*:*:*:*:*:*range: <=4.3.3.0378
    • cpe:2.3:o:qnap:qts:4.3.4.0358:beta1:*:*:*:*:*:*
    • cpe:2.3:o:qnap:qts:4.3.4.0370:beta1:*:*:*:*:*:*
    • cpe:2.3:o:qnap:qts:4.3.4.0372:beta1:*:*:*:*:*:*
    • cpe:2.3:o:qnap:qts:4.3.4.0374:beta1:*:*:*:*:*:*
    • cpe:2.3:o:qnap:qts:4.3.4.0387:beta2:*:*:*:*:*:*
    • (no CPE)range: 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier
  • QNAP/QTS Password functionv5
    Range: 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.