Every CVE whose affected-product data names Qnap Qvr, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2021-34348 — CVSS 9.8 (critical): A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote…
CVE-2021-34351 — CVSS 9.8 (critical): A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote…
CVE-2021-38685 — CVSS 9.8 (critical): A command injection vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows remote…
CVE-2022-27588 — CVSS 9.8 (critical): We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401 and later
CVE-2025-52856 — CVSS 9.8 (critical): An improper authentication vulnerability has been reported to affect VioStor. If a remote attacker, they can then exploit the vulnerability…
CVE-2021-38686 — CVSS 8.8 (high): An improper authentication vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows…
CVE-2021-34349 — CVSS 7.2 (high): A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote…
CVE-2021-34352 — CVSS 7.2 (high): A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote…
CVE-2023-23355 — CVSS 6.6 (medium): An OS command injection vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows…
CVE-2022-27597 — CVSS 2.7 (low): A vulnerability has been reported to affect QNAP operating systems. If exploited, the out-of-bounds read vulnerability allows remote…