VYPR
← All advisories
Unrated severityNVD Advisory· Published Feb 2, 2024· Updated Jun 17, 2025

QTS, QuTS hero, QuTScloud

CVE-2023-45036

Description

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.

We have already fixed the vulnerability in the following versions: QTS 5.1.3.2578 build 20231110 and later QuTS hero h5.1.3.2578 build 20231110 and later QuTScloud c5.1.5.2651 and later

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A buffer copy without size check in QTS, QuTS hero, and QuTScloud allows authenticated admin attackers to execute code via network.

Vulnerability

A buffer copy without checking size of input vulnerability exists in QNAP operating systems. This flaw affects QTS 5.1.x, QuTS hero h5.1.x, and QuTScloud c5.x. Authenticated administrators can trigger the vulnerability via network, possibly through crafted input that overflows a buffer [1]. The issue has been fixed in QTS 5.1.4.2596 build 20231128, QuTS hero h5.1.4.2596 build 20231128, and QuTScloud c5.1.5.2651 [1].

Exploitation

An attacker with existing administrative access (authenticated as admin) can exploit the vulnerability over the network by sending a specially crafted request that triggers an unchecked buffer copy operation. No user interaction beyond the attacker's own actions is required, though the attacker must be authenticated to the QNAP device [1].

Impact

Successful exploitation allows an authenticated administrator to execute arbitrary code on the affected device, leading to full compromise of the system. The attacker gains the ability to run commands or modify system files at the highest privilege level (root or admin equivalent) [1].

Mitigation

QNAP has released fixed versions: QTS 5.1.4.2596 build 20231128, QuTS hero h5.1.4.2596 build 20231128, and QuTScloud c5.1.5.2651. Users should update their systems to these or later versions via the Control Panel or QNAP Download Center [1]. No workaround is mentioned in the available references.

References
  1. Multiple Vulnerabilities in QTS, QuTS hero and QuTScloud - Security Advisory

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

6
  • Qnap/Qtsllm-fuzzy
    Range: <5.1.3.2578
  • Qnap/QuTS herollm-fuzzy
    Range: <h5.1.3.2578
  • Qnap/QuTScloudllm-fuzzy
    Range: <c5.1.5.2651
  • QNAP Systems Inc./QTSv5
    Range: 5.1.x
  • QNAP Systems Inc./QuTScloudv5
    Range: c5.x.x
  • QNAP Systems Inc./QuTS herov5
    Range: h5.1.x

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.