Every CVE whose affected-product data names Qnap Qutscloud, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (62)
CVE-2024-32766 — CVSS 10.0 (critical): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2024-21899 — CVSS 9.8 (critical): An improper authentication vulnerability has been reported to affect several QNAP operating system versions. If exploited, the…
CVE-2023-23368 — CVSS 9.8 (critical): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2023-45025 — CVSS 9.0 (critical): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2023-47568 — CVSS 8.8 (high): A SQL injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could…
CVE-2021-44051 — CVSS 8.8 (high): A command injection vulnerability has been reported to affect QNAP NAS running QuTScloud, QuTS hero and QTS. If exploited, this…
CVE-2023-23362 — CVSS 8.8 (high): An OS command injection vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability allows remote…
CVE-2023-39297 — CVSS 8.8 (high): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2023-51365 — CVSS 8.7 (high): A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could…
CVE-2023-51364 — CVSS 8.7 (high): A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could…
CVE-2021-28816 — CVSS 7.6 (high): A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero. If exploited, this…
CVE-2024-27124 — CVSS 7.5 (high): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2018-19941 — CVSS 7.5 (high): A vulnerability has been reported to affect QNAP NAS. If exploited, this vulnerability allows an attacker to access sensitive information…
CVE-2023-32974 — CVSS 7.5 (high): A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could…
CVE-2022-27600 — CVSS 6.8 (medium): An uncontrolled resource consumption vulnerability has been reported to affect several QNAP operating system versions. If exploited, the…
CVE-2023-47566 — CVSS 6.7 (medium): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2023-23355 — CVSS 6.6 (medium): An OS command injection vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows…
CVE-2023-39302 — CVSS 6.6 (medium): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2021-44052 — CVSS 6.5 (medium): An improper link resolution before file access ('Link Following') vulnerability has been reported to affect QNAP device running QuTScloud…
CVE-2024-21905 — CVSS 6.5 (medium): An integer overflow or wraparound vulnerability has been reported to affect several QNAP operating system versions. If exploited, the…
CVE-2018-19957 — CVSS 6.1 (medium): A vulnerability involving insufficient HTTP security headers has been reported to affect QNAP NAS running QTS, QuTS hero, and QuTScloud…
CVE-2018-19942 — CVSS 6.1 (medium): A cross-site scripting (XSS) vulnerability has been reported to affect earlier versions of File Station. If exploited, this vulnerability…
CVE-2021-34343 — CVSS 6.0 (medium): A stack buffer overflow vulnerability has been reported to affect QNAP device running QTS, QuTScloud, QuTS hero. If exploited, this…
CVE-2023-47218 — CVSS 5.8 (medium): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2023-50358 — CVSS 5.8 (medium): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2021-28806 — CVSS 5.7 (medium): A DOM-based XSS vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero. If exploited, this vulnerability allows…
CVE-2021-44053 — CVSS 5.7 (medium): A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running QTS, QuTS hero and QuTScloud. If exploited, this…
CVE-2023-41281 — CVSS 5.5 (medium): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2023-41273 — CVSS 5.5 (medium): A heap-based buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If exploited, the…
CVE-2023-41274 — CVSS 5.5 (medium): A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the…
CVE-2023-41275 — CVSS 5.5 (medium): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-41276 — CVSS 5.5 (medium): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-41277 — CVSS 5.5 (medium): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-41278 — CVSS 5.5 (medium): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-41279 — CVSS 5.5 (medium): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-41280 — CVSS 5.5 (medium): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-41282 — CVSS 5.5 (medium): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2023-41283 — CVSS 5.5 (medium): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2023-45026 — CVSS 5.5 (medium): A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could…
CVE-2023-45027 — CVSS 5.5 (medium): A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could…
CVE-2023-45028 — CVSS 5.5 (medium): An uncontrolled resource consumption vulnerability has been reported to affect several QNAP operating system versions. If exploited, the…
CVE-2021-38693 — CVSS 5.3 (medium): A path traversal vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero, QTS, QVR Pro Appliance. If exploited…
CVE-2023-39303 — CVSS 5.3 (medium): An improper authentication vulnerability has been reported to affect several QNAP operating system versions. If exploited, the…
CVE-2023-32967 — CVSS 5.0 (medium): An incorrect authorization vulnerability has been reported to affect several QNAP operating system versions. If exploited, the…
CVE-2023-32970 — CVSS 4.9 (medium): A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the…
CVE-2023-32969 — CVSS 4.9 (medium): A cross-site scripting (XSS) vulnerability has been reported to affect Network & Virtual Switch. If exploited, the vulnerability could…
CVE-2023-23367 — CVSS 4.7 (medium): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2023-47567 — CVSS 4.7 (medium): An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2023-39301 — CVSS 4.3 (medium): A server-side request forgery (SSRF) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the…
CVE-2024-21900 — CVSS 4.3 (medium): An injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow…
CVE-2021-44054 — CVSS 4.3 (medium): An open redirect vulnerability has been reported to affect QNAP device running QuTScloud, QuTS hero and QTS. If exploited, this…
CVE-2021-38674 — CVSS 4.2 (medium): A cross-site scripting (XSS) vulnerability has been reported to affect QTS, QuTS hero and QuTScloud. If exploited, this vulnerability…
CVE-2023-32971 — CVSS 3.8 (low): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-32972 — CVSS 3.8 (low): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-45035 — CVSS 3.8 (low): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-45036 — CVSS 3.8 (low): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-45037 — CVSS 3.8 (low): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-41292 — CVSS 3.8 (low): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-32973 — CVSS 3.8 (low): A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If…
CVE-2023-50359 — CVSS 3.4 (low): An unchecked return value vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability…
CVE-2022-27597 — CVSS 2.7 (low): A vulnerability has been reported to affect QNAP operating systems. If exploited, the out-of-bounds read vulnerability allows remote…
CVE-2022-27598 — CVSS 2.7 (low): A vulnerability has been reported to affect QNAP operating systems. If exploited, the out-of-bounds read vulnerability allows remote…