Qnap Systems Inc. Proxy Server vulnerabilities
3 known vulnerabilities affecting qnap_systems_inc./proxy_server.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2021-34360HIGHCVSS 8.8≥ unspecified, < 1.4.2 ( 2021/12/30 )≥ unspecified, < 1.4.3 ( 2022/01/18 )2022-05-26
CVE-2021-34360 [MEDIUM] CWE-352 CVE-2021-34360: A cross-site request forgery (CSRF) vulnerability has been reported to affect QNAP device running Pr
A cross-site request forgery (CSRF) vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy Server 1.4.2 ( 2021/12/30 ) and later QuTS hero h5.0.0:
cvelistv5nvd
CVE-2021-34361MEDIUMCVSS 6.1≥ unspecified, < 1.4.2 ( 2021/12/30 )2022-02-25
CVE-2021-34361 [MEDIUM] CWE-79 CVE-2021-34361: A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Proxy Ser
A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy Server 1.4.2 ( 2021/12/30 ) and later
cvelistv5nvd
CVE-2021-34359MEDIUMCVSS 5.4≥ unspecified, < 1.4.2 ( 2021/12/30 )2022-02-25
CVE-2021-34359 [MEDIUM] CWE-79 CVE-2021-34359: A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Proxy Ser
A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy Server 1.4.2 ( 2021/12/30 ) and later
cvelistv5nvd