VYPR

QTS

by QNAP Systems Inc.

CVEs (9)

  • CVE-2021-28804CriJul 1, 2021
    risk 0.64cvss 9.8epss 0.02

    A command injection vulnerabilities have been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. This issue affects: QNAP Systems Inc. QTS versions prior to 4.5.1.1540 build…

  • CVE-2021-28802CriJul 1, 2021
    risk 0.64cvss 9.8epss 0.02

    A command injection vulnerabilities have been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. This issue affects: QNAP Systems Inc. QTS versions prior to 4.5.1.1540 build…

  • CVE-2021-28800HigJun 24, 2021
    risk 0.53cvss 8.1epss 0.01

    A command injection vulnerability has been reported to affect QNAP NAS running legacy versions of QTS. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. This issue affects: QNAP Systems Inc. QTS versions prior to…

  • CVE-2018-0721HigNov 27, 2018
    risk 0.50cvss 7.7epss 0.02

    Buffer Overflow vulnerability in NAS devices. QTS allows attackers to run arbitrary code. This issue affects: QNAP Systems Inc. QTS version 4.2.6 and prior versions on build 20180711; version 4.3.3 and prior versions on build 20180725; version 4.3.4 and prior versions on build…

  • CVE-2020-2492HigNov 16, 2020
    risk 0.47cvss 7.2epss 0.02

    If exploited, the command injection vulnerability could allow remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. QTS versions prior to 4.4.3.1421 on build 20200907.

  • CVE-2020-2490HigNov 16, 2020
    risk 0.47cvss 7.2epss 0.02

    If exploited, the command injection vulnerability could allow remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. QTS versions prior to 4.4.3.1421 on build 20200907.

  • CVE-2020-36194MedJul 1, 2021
    risk 0.40cvss 6.1epss 0.01

    An XSS vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero. If exploited, this vulnerability allows attackers to inject malicious code. This issue affects: QNAP Systems Inc. QTS versions prior to 4.5.2.1566 Build 20210202. QNAP Systems Inc. QuTS hero…

  • CVE-2021-28806MedJun 3, 2021
    risk 0.37cvss 5.7epss 0.01

    A DOM-based XSS vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero. If exploited, this vulnerability allows attackers to inject malicious code. This issue affects: QNAP Systems Inc. QTS versions prior to 4.5.3.1652 Build 20210428. QNAP Systems Inc. QuTS…

  • CVE-2018-0719MedNov 27, 2018
    risk 0.36cvss 5.5epss 0.01

    Cross-site Scripting (XSS) vulnerability in NAS devices of QNAP Systems Inc. QTS allows attackers to inject javascript. This issue affects: QNAP Systems Inc. QTS version 4.2.6 and prior versions on build 20180711; version 4.3.3 and prior versions on build 20180725; version 4.3.4…