Qnap Myqnapcloud vulnerabilities

CVE-2024-21901 [MEDIUM] CWE-89 CVE-2024-21901: A SQL injection vulnerability has been reported to affect myQNAPcloud. If exploited, the vulnerabili A SQL injection vulnerability has been reported to affect myQNAPcloud. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We have already fixed the vulnerability in the following versions: myQNAPcloud 1.0.52 ( 2023/11/24 ) and later QTS 4.5.4.2627 build 20231225 and later

CVE-2019-7181 [HIGH] CWE-119 CVE-2019-7181: Buffer Overflow vulnerability in myQNAPcloud Connect 1.3.3.0925 and earlier could allow remote attac Buffer Overflow vulnerability in myQNAPcloud Connect 1.3.3.0925 and earlier could allow remote attackers to crash the program.