VYPR
Unrated severityNVD Advisory· Published Sep 6, 2024· Updated Sep 6, 2024

QTS

CVE-2023-39300

Description

An OS command injection vulnerability has been reported to affect legacy QTS. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network.

We have already fixed the vulnerability in the following versions: QTS 4.3.6.2805 build 20240619 and later QTS 4.3.4.2814 build 20240618 and later QTS 4.3.3.2784 build 20240619 and later QTS 4.2.6 build 20240618 and later

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Qnap/Qtsllm-fuzzy
    Range: <=4.3.6.2805 / <=4.3.4.2814 / <=4.3.3.2784 / <=4.2.6 build 20240618
  • QNAP Systems Inc./QTSv5
    Range: 5.x
  • QNAP Systems Inc./QuTScloudv5
    Range: c5.x
  • QNAP Systems Inc./QuTS herov5
    Range: h5.x

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.