gsd-2023-45026
Vulnerability from gsd
Modified
2023-12-13 01:20
Details
A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to read the contents of unexpected files and expose sensitive data via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.5.2645 build 20240116 and later
QuTS hero h5.1.5.2647 build 20240118 and later
QuTScloud c5.1.5.2651 and later
Aliases
Aliases
{ GSD: { alias: "CVE-2023-45026", id: "GSD-2023-45026", }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2023-45026", ], details: "A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to read the contents of unexpected files and expose sensitive data via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.5.2645 build 20240116 and later\nQuTS hero h5.1.5.2647 build 20240118 and later\nQuTScloud c5.1.5.2651 and later\n", id: "GSD-2023-45026", modified: "2023-12-13T01:20:37.869692Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "security@qnap.com", ID: "CVE-2023-45026", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "QTS", version: { version_data: [ { version_affected: "<", version_name: "5.1.x", version_value: "5.1.5.2645 build 20240116", }, ], }, }, { product_name: "QuTS hero", version: { version_data: [ { version_affected: "<", version_name: "h5.1.x", version_value: "h5.1.5.2647 build 20240118", }, ], }, }, { product_name: "QuTScloud", version: { version_data: [ { version_affected: "<", version_name: "c5.x.x", version_value: "c5.1.5.2651", }, ], }, }, ], }, vendor_name: "QNAP Systems Inc.", }, ], }, }, credits: [ { lang: "en", value: "Jiaxu Zhao && Bingwei Peng", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to read the contents of unexpected files and expose sensitive data via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.5.2645 build 20240116 and later\nQuTS hero h5.1.5.2647 build 20240118 and later\nQuTScloud c5.1.5.2651 and later\n", }, ], }, generator: { engine: "Vulnogram 0.1.0-dev", }, impact: { cvss: [ { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "HIGH", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:L", version: "3.1", }, ], }, problemtype: { problemtype_data: [ { description: [ { cweId: "CWE-22", lang: "eng", value: "CWE-22", }, ], }, ], }, references: { reference_data: [ { name: "https://www.qnap.com/en/security-advisory/qsa-24-02", refsource: "MISC", url: "https://www.qnap.com/en/security-advisory/qsa-24-02", }, ], }, solution: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following versions:<br>QTS 5.1.5.2645 build 20240116 and later<br>QuTS hero h5.1.5.2647 build 20240118 and later<br>QuTScloud c5.1.5.2651 and later<br>", }, ], value: "We have already fixed the vulnerability in the following versions:\nQTS 5.1.5.2645 build 20240116 and later\nQuTS hero h5.1.5.2647 build 20240118 and later\nQuTScloud c5.1.5.2651 and later\n", }, ], source: { advisory: "QSA-24-02", discovery: "EXTERNAL", }, }, "nvd.nist.gov": { cve: { configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:qnap:qts:5.1.0.2348:build_20230325:*:*:*:*:*:*", matchCriteriaId: "39382CBA-EA68-426A-AC07-A9A26E722CAB", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:qts:5.1.0.2399:build_20230515:*:*:*:*:*:*", matchCriteriaId: "BCB37C08-1DF7-4AF4-9BB1-C562E5643B5A", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:qts:5.1.0.2418:build_20230603:*:*:*:*:*:*", matchCriteriaId: "8368130C-F26D-41FE-8D78-B103A23B5327", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:qts:5.1.0.2444:build_20230629:*:*:*:*:*:*", matchCriteriaId: "3E0EE181-78AF-4C3C-90A4-C69A2DE6E176", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:qts:5.1.0.2466:build_20230721:*:*:*:*:*:*", matchCriteriaId: "56E3AE06-78DA-4844-ADC1-09A35F1C5B54", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:qts:5.1.1.2491:build_20230815:*:*:*:*:*:*", matchCriteriaId: "D2AA7A32-0DA8-4417-A23E-C4F563BC7819", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:qts:5.1.2.2533:build_20230926:*:*:*:*:*:*", matchCriteriaId: "80E7C17C-ED6D-439D-A1F3-1870A3ADA926", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:qts:5.1.3.2578:build_20231110:*:*:*:*:*:*", matchCriteriaId: "636C2D9C-C837-4FAC-B79D-1CA7A7C1FF3E", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:qts:5.1.4.2596:build_20231128:*:*:*:*:*:*", matchCriteriaId: "866B455B-0266-4990-920B-A06756ED5A61", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:qts:5.1.5.2645:-:*:*:*:*:*:*", matchCriteriaId: "F39AD4D1-B99D-4724-AF31-A04209C43D1C", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:quts_hero:h5.1.0.2409:build_20230525:*:*:*:*:*:*", matchCriteriaId: "6CA398A8-EBDF-4D41-B15E-7B763F885021", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:quts_hero:h5.1.0.2424:build_20230609:*:*:*:*:*:*", matchCriteriaId: "F63A5ED2-ECC2-49A0-BFA9-548E35ACD6C7", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:quts_hero:h5.1.0.2453:build_20230708:*:*:*:*:*:*", matchCriteriaId: "53387FAC-7BE0-47D7-99BF-2B1F03C17CC3", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:quts_hero:h5.1.0.2466:build_20230721:*:*:*:*:*:*", matchCriteriaId: "D4226394-0023-4CD2-BB89-77251BF92FF3", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:quts_hero:h5.1.1.2488:build_20230812:*:*:*:*:*:*", matchCriteriaId: "646257F7-D4A4-43B0-91F2-7850338B3CA1", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:quts_hero:h5.1.2.2534:build_20230927:*:*:*:*:*:*", matchCriteriaId: "88825AE1-B006-4F7F-BD90-D4B1CF1251A3", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:quts_hero:h5.1.3.2578:build_20231110:*:*:*:*:*:*", matchCriteriaId: "3F471666-4919-4770-956E-ACE4C55D29DB", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:quts_hero:h5.1.4.2596:build_20231128:*:*:*:*:*:*", matchCriteriaId: "9573F671-D49E-438A-B72C-DFC390A79093", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:quts_hero:h5.1.5.2647:-:*:*:*:*:*:*", matchCriteriaId: "4A99570F-1F53-4E24-A3B0-F8BA3C5A4363", vulnerable: true, }, { criteria: "cpe:2.3:o:qnap:qutscloud:c5.1.0.2498:build_20230822:*:*:*:*:*:*", matchCriteriaId: "C50B05E2-8F25-4CA7-84FE-F5C510C83FE1", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], descriptions: [ { lang: "en", value: "A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to read the contents of unexpected files and expose sensitive data via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.5.2645 build 20240116 and later\nQuTS hero h5.1.5.2647 build 20240118 and later\nQuTScloud c5.1.5.2651 and later\n", }, { lang: "es", value: "Se ha informado que una vulnerabilidad de path traversal afecta a varias versiones del sistema operativo QNAP. Si se explota, la vulnerabilidad podría permitir a los administradores autenticados leer el contenido de archivos inesperados y exponer datos confidenciales a través de una red. Ya hemos solucionado la vulnerabilidad en las siguientes versiones: QTS 5.1.5.2645 compilación 20240116 y posteriores QuTS hero h5.1.5.2647 compilación 20240118 y posteriores QuTScloud c5.1.5.2651 y posteriores", }, ], id: "CVE-2023-45026", lastModified: "2024-02-06T20:04:57.903", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 1.2, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "HIGH", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:L", version: "3.1", }, exploitabilityScore: 2.3, impactScore: 2.7, source: "security@qnapsecurity.com.tw", type: "Secondary", }, ], }, published: "2024-02-02T16:15:50.110", references: [ { source: "security@qnapsecurity.com.tw", tags: [ "Vendor Advisory", ], url: "https://www.qnap.com/en/security-advisory/qsa-24-02", }, ], sourceIdentifier: "security@qnapsecurity.com.tw", vulnStatus: "Analyzed", weaknesses: [ { description: [ { lang: "en", value: "CWE-22", }, ], source: "security@qnapsecurity.com.tw", type: "Primary", }, ], }, }, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.