Critical severity9.8NVD Advisory· Published Dec 21, 2017· Updated Jun 17, 2026
CVE-2017-17032
CVE-2017-17032
Description
A buffer overflow vulnerability in password function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier could allow remote attackers to execute arbitrary code on NAS devices.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:o:qnap:qts:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:o:qnap:qts:*:*:*:*:*:*:*:*range: <=4.3.3.0378
- cpe:2.3:o:qnap:qts:4.3.4.0358:beta1:*:*:*:*:*:*
- cpe:2.3:o:qnap:qts:4.3.4.0370:beta1:*:*:*:*:*:*
- cpe:2.3:o:qnap:qts:4.3.4.0372:beta1:*:*:*:*:*:*
- cpe:2.3:o:qnap:qts:4.3.4.0374:beta1:*:*:*:*:*:*
- cpe:2.3:o:qnap:qts:4.3.4.0387:beta2:*:*:*:*:*:*
- (no CPE)range: 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier
- QNAP/QTS Password functionv5Range: 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier
Patches
Vulnerability mechanics
References
2- www.securitytracker.com/id/1040018nvdThird Party AdvisoryVDB Entry
- www.qnap.com/zh-tw/security-advisory/nas-201712-15nvdIssue TrackingVendor Advisory
News mentions
0No linked articles in our index yet.