Qnap Systems Inc Hbs 3 vulnerabilities
2 known vulnerabilities affecting qnap_systems_inc/hbs_3.
Total CVEs
2
CISA KEV
1
actively exploited
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2021-28809CRITICALCVSS 9.8≥ unspecified, < v3.0.210507≥ unspecified, < v3.0.2105062021-07-08
CVE-2021-28809 [CRITICAL] CWE-284 CVE-2021-28809: An improper access control vulnerability has been reported to affect certain legacy versions of HBS
An improper access control vulnerability has been reported to affect certain legacy versions of HBS 3. If exploited, this vulnerability allows attackers to compromise the security of the operating system.QNAP have already fixed this vulnerability in the following versions of HBS 3: QTS 4.3.6: HBS 3 v3.0.210507 and later QTS 4.3.4: HBS 3 v3.0.210506
cvelistv5nvd
CVE-2021-28799CRITICALCVSS 9.8KEVPoC≥ unspecified, < v16.0.0415≥ unspecified, < v3.0.210412+2 more2021-05-13
CVE-2021-28799 [CRITICAL] CWE-285 CVE-2021-28799: An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 (Hybrid B
An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 (Hybrid Backup Sync. ) If exploited, the vulnerability allows remote attackers to log in to a device. This issue affects: QNAP Systems Inc. HBS 3 versions prior to v16.0.0415 on QTS 4.5.2; versions prior to v3.0.210412 on QTS 4.3.6; versions prior to v3.0.21
cvelistv5nvd