Qnap Systems Inc. Qvr vulnerabilities
7 known vulnerabilities affecting qnap_systems_inc./qvr.
Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH2
Vulnerabilities
Page 1 of 1
CVE-2022-27588CRITICALCVSS 9.8≥ unspecified, < 5.1.6 build 202204012022-05-05
CVE-2022-27588 [CRITICAL] CWE-77 CVE-2022-27588: We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401
We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401 and later
cvelistv5nvd
CVE-2021-38685CRITICALCVSS 9.8≥ unspecified, < QVR FW 5.1.6 build 202111092021-11-26
CVE-2021-38685 [CRITICAL] CWE-78 CVE-2021-38685: A command injection vulnerability has been reported to affect QNAP device, VioStor. If exploited, th
A command injection vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR FW 5.1.6 build 20211109 and later
cvelistv5nvd
CVE-2021-38686HIGHCVSS 8.8≥ unspecified, < QVR FW 5.1.6 build 202111092021-11-26
CVE-2021-38686 [HIGH] CWE-287 CVE-2021-38686: An improper authentication vulnerability has been reported to affect QNAP device, VioStor. If exploi
An improper authentication vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of QVR: QVR FW 5.1.6 build 20211109 and later
cvelistv5nvd
CVE-2021-34352CRITICALCVSS 9.8≥ unspecified, < 5.1.5 build 202109022021-10-01
CVE-2021-34352 [HIGH] CWE-78 CVE-2021-34352: A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited,
A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.5 build 20210902 and later
cvelistv5nvd
CVE-2021-34351CRITICALCVSS 9.8≥ unspecified, < 5.1.5 build 202108032021-09-27
CVE-2021-34351 [CRITICAL] CWE-78 CVE-2021-34351: A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited,
A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.5 build 20210803 and later
cvelistv5nvd
CVE-2021-34348CRITICALCVSS 9.8≥ unspecified, < 5.1.5 build 202108032021-09-27
CVE-2021-34348 [CRITICAL] CWE-78 CVE-2021-34348: A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited,
A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.5 build 20210803 and later
cvelistv5nvd
CVE-2021-34349HIGHCVSS 7.2≥ unspecified, < 5.1.5 build 202108032021-09-27
CVE-2021-34349 [HIGH] CWE-78 CVE-2021-34349: A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited,
A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.5 build 20210803 and later
cvelistv5nvd