Qnap Systems Inc Qts vulnerabilities
249 known vulnerabilities affecting qnap_systems_inc/qts.
Total CVEs
249
CISA KEV
4
actively exploited
Public exploits
3
Exploited in wild
10
Severity breakdown
CRITICAL22HIGH111MEDIUM113LOW3
Vulnerabilities
Page 6 of 13
CVE-2023-32968P3HIGHCVSS 7.2≥ 5.0.x, < 5.0.1.2514 build 20230906≥ 5.1.x, < 5.1.2.2533 build 202309262023-12-08
CVE-2023-32968 [HIGH] CWE-120 CVE-2023-32968: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.0.1.2514 build 20230906 and later
QTS 5.1.2.2533
nvd
CVE-2023-45043P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.4.2596 build 202311282024-01-05
CVE-2023-45043 [HIGH] CWE-120 CVE-2023-45043: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.
nvd
CVE-2023-45041P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.4.2596 build 202311282024-01-05
CVE-2023-45041 [HIGH] CWE-120 CVE-2023-45041: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.
nvd
CVE-2023-45042P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.4.2596 build 202311282024-01-05
CVE-2023-45042 [HIGH] CWE-120 CVE-2023-45042: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.
nvd
CVE-2023-45044P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.4.2596 build 202311282024-01-05
CVE-2023-45044 [HIGH] CWE-120 CVE-2023-45044: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.
nvd
CVE-2023-45040P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.4.2596 build 202311282024-01-05
CVE-2023-45040 [HIGH] CWE-120 CVE-2023-45040: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.
nvd
CVE-2023-45039P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.4.2596 build 202311282024-01-05
CVE-2023-45039 [HIGH] CWE-120 CVE-2023-45039: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.
nvd
CVE-2023-45036P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.3.2578 build 202311102024-02-02
CVE-2023-45036 [HIGH] CWE-120 CVE-2023-45036: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.3.2578 build 20231110 and later
QuTS hero h5.1.
nvd
CVE-2023-41280P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.2.2533 build 202309262024-02-02
CVE-2023-41280 [HIGH] CWE-120 CVE-2023-41280: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.2.2533 build 20230926 and later
QuTS hero h5.1.
nvd
CVE-2023-45037P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.3.2578 build 202311102024-02-02
CVE-2023-45037 [HIGH] CWE-120 CVE-2023-45037: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.3.2578 build 20231110 and later
QuTS hero h5.1.
nvd
CVE-2023-41292P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.4.2596 build 202311282024-02-02
CVE-2023-41292 [HIGH] CWE-120 CVE-2023-41292: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.
nvd
CVE-2023-45035P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.4.2596 build 202311282024-02-02
CVE-2023-45035 [HIGH] CWE-120 CVE-2023-45035: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.
nvd
CVE-2023-41279P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.2.2533 build 202309262024-02-02
CVE-2023-41279 [HIGH] CWE-120 CVE-2023-41279: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.2.2533 build 20230926 and later
QuTS hero h5.1.
nvd
CVE-2023-41273P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.2.2533 build 202309262024-02-02
CVE-2023-41273 [HIGH] CWE-120 CVE-2023-41273: A heap-based buffer overflow vulnerability has been reported to affect several QNAP operating system
A heap-based buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.2.2533 build 20230926 and later
QuTS hero h5.1.2.2534 build 20
nvd
CVE-2023-41275P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.2.2533 build 202309262024-02-02
CVE-2023-41275 [HIGH] CWE-120 CVE-2023-41275: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.2.2533 build 20230926 and later
QuTS hero h5.1.
nvd
CVE-2023-41278P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.2.2533 build 202309262024-02-02
CVE-2023-41278 [HIGH] CWE-120 CVE-2023-41278: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.2.2533 build 20230926 and later
QuTS hero h5.1.
nvd
CVE-2023-41277P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.2.2533 build 202309262024-02-02
CVE-2023-41277 [HIGH] CWE-120 CVE-2023-41277: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.2.2533 build 20230926 and later
QuTS hero h5.1.
nvd
CVE-2023-41276P3HIGHCVSS 7.2≥ 5.1.x, < 5.1.2.2533 build 202309262024-02-02
CVE-2023-41276 [HIGH] CWE-120 CVE-2023-41276: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.2.2533 build 20230926 and later
QuTS hero h5.1.
nvd
CVE-2023-32973P3HIGHCVSS 7.2≥ 5.0.x, < 5.0.1.2425 build 20230609≥ 5.1.x, < 5.1.0.2444 build 20230629+1 more2023-10-13
CVE-2023-32973 [HIGH] CWE-120 CVE-2023-32973: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.0.1.2425 build 20230609 and later
QTS 5.1.0.2444
nvd
CVE-2023-32971P3HIGHCVSS 7.2≥ 5.0.x, < 5.0.1.2425 build 20230609≥ 5.1.x, < 5.1.0.2444 build 20230629+1 more2023-10-06
CVE-2023-32971 [HIGH] CWE-120 CVE-2023-32971: A buffer copy without checking size of input vulnerability has been reported to affect several QNAP
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.0.1.2425 build 20230609 and later
QTS 5.1.0.2444
nvd