VYPR

QTS

by QTS

CVEs (3)

  • CVE-2020-2509CriKEVApr 17, 2021
    risk 0.78cvss 9.8epss 0.33

    A command injection vulnerability has been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. We have already fixed this vulnerability in the following versions: QTS 4.5.2.1566 Build…

  • CVE-2018-14748HigNov 28, 2018
    risk 0.49cvss 7.5epss 0.01

    Improper Authorization vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions could allow remote attackers to power off the NAS.

  • CVE-2023-39300HigSep 6, 2024
    risk 0.47cvss 7.2epss 0.01

    An OS command injection vulnerability has been reported to affect legacy QTS. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 4.3.6.2805 build…