CVE-2018-14749

CWE-119Buffer Overflow3 documents3 sources
Severity
9.8CRITICAL
EPSS
0.5%
top 32.26%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Qnap Qnap QTSQnap QTS
Timeline
PublishedNov 28
Latest updateMay 14

Description

Buffer Overflow vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions could have unspecified impact on the NAS.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

NVDqnap/qts4 versions+3
CVEListV5qnap/qnap_qtsQTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions

🔴Vulnerability Details

2
GHSA
GHSA-4fjm-5h43-6xgx: Buffer Overflow vulnerability in QTS 42022-05-14
CVEList
CVE-2018-14749: Buffer Overflow vulnerability in QTS 42018-11-28
CVE-2018-14749 (CRITICAL CVSS 9.8) | Buffer Overflow vulnerability in QT | cvebase.io