VYPR
Unrated severityNVD Advisory· Published Aug 24, 2023· Updated Sep 30, 2024

QTS, QuTS hero and QuTScloud

CVE-2023-34972

Description

A cleartext transmission of sensitive information vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows local network clients to read the contents of unexpected sensitive data via unspecified vectors.

We have already fixed the vulnerability in the following versions: QTS 5.0.1.2425 build 20230609 and later QTS 5.1.0.2444 build 20230629 and later QuTS hero h5.1.0.2424 build 20230609 and later

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Qnap/Qtsllm-fuzzy
    Range: 5.0.1.2425 build 20230609 and later, 5.1.0.2444 build 20230629 and later
  • Qnap/Quts Herollm-fuzzy
    Range: h5.1.0.2424 build 20230609 and later
  • QNAP Systems Inc./QTSv5
    Range: 5.0.*
  • QNAP Systems Inc./QuTS herov5
    Range: h5.1.*

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.