Action not permitted
Modal body text goes here.
Modal Title
Modal Body
wid-sec-w-2024-0018
Vulnerability from csaf_certbund
Published
2024-01-07 23:00
Modified
2024-01-07 23:00
Summary
QNAP NAS: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
QNAP ist ein Hersteller von NAS (Network Attached Storage) Lösungen.
Angriff
Ein entfernter Angreifer kann mehrere Schwachstellen in QNAP NAS ausnutzen, um beliebigen Code auszuführen, einen Denial-of-Service-Zustand zu verursachen, Dateien zu manipulieren oder einen Cross-Site-Scripting-Angriff durchzuführen.
Betroffene Betriebssysteme
- Sonstiges
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "QNAP ist ein Hersteller von NAS (Network Attached Storage) Lösungen.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter Angreifer kann mehrere Schwachstellen in QNAP NAS ausnutzen, um beliebigen Code auszuführen, einen Denial-of-Service-Zustand zu verursachen, Dateien zu manipulieren oder einen Cross-Site-Scripting-Angriff durchzuführen.", title: "Angriff", }, { category: "general", text: "- Sonstiges", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2024-0018 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0018.json", }, { category: "self", summary: "WID-SEC-2024-0018 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0018", }, { category: "external", summary: "QNAP Security Advisory QSA-23-22 vom 2024-01-07", url: "https://www.qnap.com/go/security-advisory/qsa-23-22", }, { category: "external", summary: "QNAP Security Advisory QSA-23-54 vom 2024-01-07", url: "https://www.qnap.com/en/security-advisory/qsa-23-54", }, { category: "external", summary: "QNAP Security Advisory QSA-23-64 vom 2024-01-07", url: "https://www.qnap.com/en/security-advisory/qsa-23-64", }, { category: "external", summary: "Proof of Concept (PoC) für CVE-2023-39296", url: "https://securityonline.info/decoding-the-cve-2023-39296-vulnerability-a-technical-and-poc-analysis/", }, { category: "external", summary: "QNAP Security Advisory QSA-23-55 vom 2024-01-07", url: "https://www.qnap.com/en/security-advisory/qsa-23-55", }, { category: "external", summary: "QNAP Security Advisory QSA-23-34 vom 2024-01-07", url: "https://www.qnap.com/en/security-advisory/qsa-23-34", }, { category: "external", summary: "QNAP Security Advisory QSA-23-32 vom 2024-01-07", url: "https://www.qnap.com/en/security-advisory/qsa-23-32", }, { category: "external", summary: "QNAP Security Advisory QSA-23-23 vom 2024-01-07", url: "https://www.qnap.com/en/security-advisory/qsa-23-23", }, { category: "external", summary: "QNAP Security Advisory QSA-23-27 vom 2024-01-07", url: "https://www.qnap.com/de-de/security-advisory/qsa-23-27", }, ], source_lang: "en-US", title: "QNAP NAS: Mehrere Schwachstellen", tracking: { current_release_date: "2024-01-07T23:00:00.000+00:00", generator: { date: "2024-08-15T18:03:19.062+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2024-0018", initial_release_date: "2024-01-07T23:00:00.000+00:00", revision_history: [ { date: "2024-01-07T23:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "QNAP NAS QTS < 5.1.3.2578 build 20231110", product: { name: "QNAP NAS QTS < 5.1.3.2578 build 20231110", product_id: "T031885", product_identification_helper: { cpe: "cpe:/h:qnap:nas:qts__5.1.3.2578_build_20231110", }, }, }, { category: "product_name", name: "QNAP NAS QuTS hero < h5.1.3.2578 build 20231110", product: { name: "QNAP NAS QuTS hero < h5.1.3.2578 build 20231110", product_id: "T031886", product_identification_helper: { cpe: "cpe:/h:qnap:nas:quts_hero__h5.1.3.2578_build_20231110", }, }, }, { category: "product_name", name: "QNAP NAS QTS < 5.1.4.2596 build 20231128", product: { name: "QNAP NAS QTS < 5.1.4.2596 build 20231128", product_id: "T031889", product_identification_helper: { cpe: "cpe:/h:qnap:nas:qts__5.1.4.2596_build_20231128", }, }, }, { category: "product_name", name: "QNAP NAS QuTS hero < h5.1.4.2596 build 20231128", product: { name: "QNAP NAS QuTS hero < h5.1.4.2596 build 20231128", product_id: "T031890", product_identification_helper: { cpe: "cpe:/h:qnap:nas:quts_hero__h5.1.4.2596_build_20231128", }, }, }, { category: "product_name", name: "QNAP NAS < QuMagie 2.2.1", product: { name: "QNAP NAS < QuMagie 2.2.1", product_id: "T031891", product_identification_helper: { cpe: "cpe:/h:qnap:nas:qumagie_2.2.1", }, }, }, { category: "product_name", name: "QNAP NAS < QcalAgent 1.1.8", product: { name: "QNAP NAS < QcalAgent 1.1.8", product_id: "T031892", product_identification_helper: { cpe: "cpe:/h:qnap:nas:qcalagent_1.1.8", }, }, }, { category: "product_name", name: "QNAP NAS < Video Station 5.7.2 (2023/11/23)", product: { name: "QNAP NAS < Video Station 5.7.2 (2023/11/23)", product_id: "T031893", product_identification_helper: { cpe: "cpe:/h:qnap:nas:video_station_5.7.2_%2820231123%29", }, }, }, ], category: "product_name", name: "NAS", }, ], category: "vendor", name: "QNAP", }, ], }, vulnerabilities: [ { cve: "CVE-2022-43634", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in QNAP NAS. Dieser Fehler tritt in der Netatalk-Komponente aufgrund einer unsachgemäßen Überprüfung der Länge der vom Benutzer bereitgestellten Daten auf, bevor diese in einen Heap-basierten Puffer mit fester Länge kopiert werden. Ein entfernter, anonymer Angreifer kann diese Schwachstelle zur Ausführung von beliebigem Code ausnutzen.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2022-43634", }, { cve: "CVE-2023-39294", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in QNAP NAS. Dieser Fehler besteht im Betriebssystem aufgrund eines OS-Befehlsinjektionsproblems. Ein entfernter, authentifizierter Angreifer kann diese Schwachstelle zur Ausführung von beliebigem Code ausnutzen.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-39294", }, { cve: "CVE-2023-39296", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in QNAP NAS. Dieser Fehler besteht aufgrund einer prototypischen Verunreinigung, die es ermöglicht, vorhandene Attribute mit inkompatiblen Typen zu überschreiben. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-39296", }, { cve: "CVE-2023-41288", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in QNAP NAS. Dieser Fehler besteht in den Video Station Add-ons. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausführung von beliebigem Code ausnutzen oder Dateien zu manipulieren. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-41288", }, { cve: "CVE-2023-41287", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in QNAP NAS. Dieser Fehler besteht in den Video Station Add-ons. Ein entfernter, anonymer Angreifer kann diese Schwachstellen zur Ausführung von beliebigem Code ausnutzen oder Dateien zu manipulieren. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-41287", }, { cve: "CVE-2023-41289", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in QNAP NAS. Dieser Fehler besteht im QcalAgent-Add-on aufgrund eines OS-Befehlsinjektionsproblems. Ein entfernter, authentifizierter Angreifer kann diese Schwachstelle zur Ausführung von beliebigem Code ausnutzen.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-41289", }, { cve: "CVE-2023-45044", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in QNAP NAS. Diese Fehler bestehen im Betriebssystem aufgrund eines Pufferkopierproblems ohne Überprüfung der Eingabegröße. Ein entfernter, authentifizierter Angreifer kann diese Schwachstellen zur Ausführung von beliebigem Code ausnutzen.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-45044", }, { cve: "CVE-2023-45043", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in QNAP NAS. Diese Fehler bestehen im Betriebssystem aufgrund eines Pufferkopierproblems ohne Überprüfung der Eingabegröße. Ein entfernter, authentifizierter Angreifer kann diese Schwachstellen zur Ausführung von beliebigem Code ausnutzen.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-45043", }, { cve: "CVE-2023-45042", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in QNAP NAS. Diese Fehler bestehen im Betriebssystem aufgrund eines Pufferkopierproblems ohne Überprüfung der Eingabegröße. Ein entfernter, authentifizierter Angreifer kann diese Schwachstellen zur Ausführung von beliebigem Code ausnutzen.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-45042", }, { cve: "CVE-2023-45041", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in QNAP NAS. Diese Fehler bestehen im Betriebssystem aufgrund eines Pufferkopierproblems ohne Überprüfung der Eingabegröße. Ein entfernter, authentifizierter Angreifer kann diese Schwachstellen zur Ausführung von beliebigem Code ausnutzen.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-45041", }, { cve: "CVE-2023-45040", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in QNAP NAS. Diese Fehler bestehen im Betriebssystem aufgrund eines Pufferkopierproblems ohne Überprüfung der Eingabegröße. Ein entfernter, authentifizierter Angreifer kann diese Schwachstellen zur Ausführung von beliebigem Code ausnutzen.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-45040", }, { cve: "CVE-2023-45039", notes: [ { category: "description", text: "Es bestehen mehrere Schwachstellen in QNAP NAS. Diese Fehler bestehen im Betriebssystem aufgrund eines Pufferkopierproblems ohne Überprüfung der Eingabegröße. Ein entfernter, authentifizierter Angreifer kann diese Schwachstellen zur Ausführung von beliebigem Code ausnutzen.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-45039", }, { cve: "CVE-2023-47219", notes: [ { category: "description", text: "Es besteht eine Schwachstelle in QNAP NAS. Dieser Fehler besteht im QuMagie Add-on aufgrund eines SQL-Injection-Problems. Ein entfernter, authentifizierter Angreifer kann diese Schwachstelle ausnutzen, um Dateien zu manipulieren. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-47219", }, { cve: "CVE-2023-47560", notes: [ { category: "description", text: "In QNAP NAS existieren mehrere Schwachstellen. Diese sind auf eine Anfälligkeiten für einen Cross-Site-Scripting sowie Code-Injection zurückzuführen. Ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen oder einen Cross-Site-Scripting-Angriff durchzuführen.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-47560", }, { cve: "CVE-2023-47559", notes: [ { category: "description", text: "In QNAP NAS existieren mehrere Schwachstellen. Diese sind auf eine Anfälligkeiten für einen Cross-Site-Scripting sowie Code-Injection zurückzuführen. Ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen oder einen Cross-Site-Scripting-Angriff durchzuführen.", }, ], release_date: "2024-01-07T23:00:00.000+00:00", title: "CVE-2023-47559", }, ], }
cve-2022-43634
Vulnerability from cvelistv5
Published
2023-03-29 00:00
Modified
2025-02-12 17:42
Severity ?
EPSS score ?
Summary
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dsi_writeinit function. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-17646.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T13:40:05.669Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.zerodayinitiative.com/advisories/ZDI-23-094/", }, { tags: [ "x_transferred", ], url: "https://github.com/Netatalk/Netatalk/pull/186", }, { name: "FEDORA-2023-aaeb45fb73", tags: [ "vendor-advisory", "x_transferred", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZYWSGVA6WXREMB6PV56HAHKU7R6KPOP/", }, { name: "FEDORA-2023-e714897e70", tags: [ "vendor-advisory", "x_transferred", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SG6WZW5LXFVH3P7ZVZRGHUVJEMEFKQLI/", }, { name: "FEDORA-2023-599faf1b1c", tags: [ "vendor-advisory", "x_transferred", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GEAFLA5L2SHOUFBAGUXIF2TZLGBXGJKT/", }, { name: "[debian-lts-announce] 20230516 [SECURITY] [DLA 3426-1] netatalk security update", tags: [ "mailing-list", "x_transferred", ], url: "https://lists.debian.org/debian-lts-announce/2023/05/msg00018.html", }, { name: "DSA-5503", tags: [ "vendor-advisory", "x_transferred", ], url: "https://www.debian.org/security/2023/dsa-5503", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2022-43634", options: [ { Exploitation: "none", }, { Automatable: "yes", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2025-02-12T17:41:58.753550Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2025-02-12T17:42:14.236Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { product: "Netatalk", vendor: "Netatalk", versions: [ { status: "affected", version: "3.1.13", }, ], }, ], credits: [ { lang: "en", value: "Corentin BAYET (@OnlyTheDuck), Etienne HELLUY-LAFONT and Luca MORO (@johncool__) from Synacktiv", }, ], descriptions: [ { lang: "en", value: "This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dsi_writeinit function. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-17646.", }, ], metrics: [ { cvssV3_0: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-122", description: "CWE-122: Heap-based Buffer Overflow", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-09-21T04:06:20.590Z", orgId: "99f1926a-a320-47d8-bbb5-42feb611262e", shortName: "zdi", }, references: [ { url: "https://www.zerodayinitiative.com/advisories/ZDI-23-094/", }, { url: "https://github.com/Netatalk/Netatalk/pull/186", }, { name: "FEDORA-2023-aaeb45fb73", tags: [ "vendor-advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZYWSGVA6WXREMB6PV56HAHKU7R6KPOP/", }, { name: "FEDORA-2023-e714897e70", tags: [ "vendor-advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SG6WZW5LXFVH3P7ZVZRGHUVJEMEFKQLI/", }, { name: "FEDORA-2023-599faf1b1c", tags: [ "vendor-advisory", ], url: "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GEAFLA5L2SHOUFBAGUXIF2TZLGBXGJKT/", }, { name: "[debian-lts-announce] 20230516 [SECURITY] [DLA 3426-1] netatalk security update", tags: [ "mailing-list", ], url: "https://lists.debian.org/debian-lts-announce/2023/05/msg00018.html", }, { name: "DSA-5503", tags: [ "vendor-advisory", ], url: "https://www.debian.org/security/2023/dsa-5503", }, ], }, }, cveMetadata: { assignerOrgId: "99f1926a-a320-47d8-bbb5-42feb611262e", assignerShortName: "zdi", cveId: "CVE-2022-43634", datePublished: "2023-03-29T00:00:00.000Z", dateReserved: "2022-10-21T00:00:00.000Z", dateUpdated: "2025-02-12T17:42:14.236Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-47560
Vulnerability from cvelistv5
Published
2024-01-05 16:18
Modified
2024-08-02 21:09
Severity ?
EPSS score ?
Summary
An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to execute commands via a network.
We have already fixed the vulnerability in the following version:
QuMagie 2.2.1 and later
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| QNAP Systems Inc. | QuMagie |
Version: 2.2.x < 2.2.1 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T21:09:37.487Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-23", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "QuMagie", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "2.2.1", status: "affected", version: "2.2.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "lebr0nli (Alan Li)", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to execute commands via a network.<br><br>We have already fixed the vulnerability in the following version:<br>QuMagie 2.2.1 and later<br>", }, ], value: "An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to execute commands via a network.\n\nWe have already fixed the vulnerability in the following version:\nQuMagie 2.2.1 and later\n", }, ], impacts: [ { capecId: "CAPEC-88", descriptions: [ { lang: "en", value: "CAPEC-88", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 7.4, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-77", description: "CWE-77", lang: "en", type: "CWE", }, { cweId: "CWE-78", description: "CWE-78", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:18:17.856Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-23", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following version:<br>QuMagie 2.2.1 and later<br>", }, ], value: "We have already fixed the vulnerability in the following version:\nQuMagie 2.2.1 and later\n", }, ], source: { advisory: "QSA-23-23", discovery: "EXTERNAL", }, title: "QuMagie", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-47560", datePublished: "2024-01-05T16:18:17.856Z", dateReserved: "2023-11-06T14:11:12.322Z", dateUpdated: "2024-08-02T21:09:37.487Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-47559
Vulnerability from cvelistv5
Published
2024-01-05 16:18
Modified
2024-08-02 21:09
Severity ?
EPSS score ?
Summary
A cross-site scripting (XSS) vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network.
We have already fixed the vulnerability in the following version:
QuMagie 2.2.1 and later
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| QNAP Systems Inc. | QuMagie |
Version: 2.2.x < 2.2.1 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T21:09:37.393Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-23", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "QuMagie", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "2.2.1", status: "affected", version: "2.2.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "lebr0nli (Alan Li)", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A cross-site scripting (XSS) vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network.<br><br>We have already fixed the vulnerability in the following version:<br>QuMagie 2.2.1 and later<br>", }, ], value: "A cross-site scripting (XSS) vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network.\n\nWe have already fixed the vulnerability in the following version:\nQuMagie 2.2.1 and later\n", }, ], impacts: [ { capecId: "CAPEC-63", descriptions: [ { lang: "en", value: "CAPEC-63", }, ], }, { capecId: "CAPEC-591", descriptions: [ { lang: "en", value: "CAPEC-591", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-79", description: "CWE-79", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:18:24.533Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-23", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following version:<br>QuMagie 2.2.1 and later<br>", }, ], value: "We have already fixed the vulnerability in the following version:\nQuMagie 2.2.1 and later\n", }, ], source: { advisory: "QSA-23-23", discovery: "EXTERNAL", }, title: "QuMagie", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-47559", datePublished: "2024-01-05T16:18:24.533Z", dateReserved: "2023-11-06T14:11:12.321Z", dateUpdated: "2024-08-02T21:09:37.393Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-45043
Vulnerability from cvelistv5
Published
2024-01-05 16:18
Modified
2024-08-02 20:14
Severity ?
EPSS score ?
Summary
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.4.2596 build 20231128 and later
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| ▼ | QNAP Systems Inc. | QuTS hero |
Version: h5.1.x < h5.1.4.2596 build 20231128 |
||||||
|
|||||||||
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T20:14:19.617Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-27", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "QuTS hero", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "h5.1.4.2596 build 20231128", status: "affected", version: "h5.1.x", versionType: "custom", }, ], }, { defaultStatus: "unaffected", product: "QTS", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "5.1.4.2596 build 20231128", status: "affected", version: "5.1.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "Jiaxu Zhao && Bingwei Peng", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.<br><br>We have already fixed the vulnerability in the following versions:<br>QTS 5.1.4.2596 build 20231128 and later<br>QuTS hero h5.1.4.2596 build 20231128 and later<br>", }, ], value: "A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.4.2596 build 20231128 and later\nQuTS hero h5.1.4.2596 build 20231128 and later\n", }, ], impacts: [ { capecId: "CAPEC-100", descriptions: [ { lang: "en", value: "CAPEC-100", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 3.8, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-120", description: "CWE-120", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:18:56.178Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-27", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following versions:<br>QTS 5.1.4.2596 build 20231128 and later<br>QuTS hero h5.1.4.2596 build 20231128 and later<br>", }, ], value: "We have already fixed the vulnerability in the following versions:\nQTS 5.1.4.2596 build 20231128 and later\nQuTS hero h5.1.4.2596 build 20231128 and later\n", }, ], source: { advisory: "QSA-23-27", discovery: "EXTERNAL", }, title: "QTS, QuTS hero", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-45043", datePublished: "2024-01-05T16:18:56.178Z", dateReserved: "2023-10-03T08:58:16.880Z", dateUpdated: "2024-08-02T20:14:19.617Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-39294
Vulnerability from cvelistv5
Published
2024-01-05 16:19
Modified
2024-09-04 19:53
Severity ?
EPSS score ?
Summary
An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.3.2578 build 20231110 and later
QuTS hero h5.1.3.2578 build 20231110 and later
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| ▼ | QNAP Systems Inc. | QTS |
Version: 5.1.x < 5.1.3.2578 build 20231110 |
||||||
|
|||||||||
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T18:02:06.831Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-54", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2023-39294", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2024-03-13T19:31:20.703883Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-09-04T19:53:30.491Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "QTS", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "5.1.3.2578 build 20231110", status: "affected", version: "5.1.x", versionType: "custom", }, ], }, { defaultStatus: "unaffected", product: "QuTS hero", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "h5.1.3.2578 build 20231110", status: "affected", version: "h5.1.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "rekter0", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network.<br><br>We have already fixed the vulnerability in the following versions:<br>QTS 5.1.3.2578 build 20231110 and later<br>QuTS hero h5.1.3.2578 build 20231110 and later<br>", }, ], value: "An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.3.2578 build 20231110 and later\nQuTS hero h5.1.3.2578 build 20231110 and later\n", }, ], impacts: [ { capecId: "CAPEC-88", descriptions: [ { lang: "en", value: "CAPEC-88", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.6, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "HIGH", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-78", description: "CWE-78", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:19:26.278Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-54", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following versions:<br>QTS 5.1.3.2578 build 20231110 and later<br>QuTS hero h5.1.3.2578 build 20231110 and later<br>", }, ], value: "We have already fixed the vulnerability in the following versions:\nQTS 5.1.3.2578 build 20231110 and later\nQuTS hero h5.1.3.2578 build 20231110 and later\n", }, ], source: { advisory: "QSA-23-54", discovery: "EXTERNAL", }, title: "QTS, QuTS hero", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-39294", datePublished: "2024-01-05T16:19:26.278Z", dateReserved: "2023-07-27T06:46:01.475Z", dateUpdated: "2024-09-04T19:53:30.491Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-45040
Vulnerability from cvelistv5
Published
2024-01-05 16:18
Modified
2024-08-02 20:14
Severity ?
EPSS score ?
Summary
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.4.2596 build 20231128 and later
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| ▼ | QNAP Systems Inc. | QTS |
Version: 5.1.x < 5.1.4.2596 build 20231128 |
||||||
|
|||||||||
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T20:14:18.322Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-27", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "QTS", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "5.1.4.2596 build 20231128", status: "affected", version: "5.1.x", versionType: "custom", }, ], }, { defaultStatus: "unaffected", product: "QuTS hero", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "h5.1.4.2596 build 20231128", status: "affected", version: "h5.1.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "Jiaxu Zhao && Bingwei Peng", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.<br><br>We have already fixed the vulnerability in the following versions:<br>QTS 5.1.4.2596 build 20231128 and later<br>QuTS hero h5.1.4.2596 build 20231128 and later<br>", }, ], value: "A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.4.2596 build 20231128 and later\nQuTS hero h5.1.4.2596 build 20231128 and later\n", }, ], impacts: [ { capecId: "CAPEC-100", descriptions: [ { lang: "en", value: "CAPEC-100", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 3.8, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-120", description: "CWE-120", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:18:41.220Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-27", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following versions:<br>QTS 5.1.4.2596 build 20231128 and later<br>QuTS hero h5.1.4.2596 build 20231128 and later<br>", }, ], value: "We have already fixed the vulnerability in the following versions:\nQTS 5.1.4.2596 build 20231128 and later\nQuTS hero h5.1.4.2596 build 20231128 and later\n", }, ], source: { advisory: "QSA-23-27", discovery: "EXTERNAL", }, title: "QTS, QuTS hero", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-45040", datePublished: "2024-01-05T16:18:41.220Z", dateReserved: "2023-10-03T08:58:16.879Z", dateUpdated: "2024-08-02T20:14:18.322Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-39296
Vulnerability from cvelistv5
Published
2024-01-05 16:19
Modified
2024-08-02 18:02
Severity ?
EPSS score ?
Summary
A prototype pollution vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to override existing attributes with ones that have incompatible type, which may lead to a crash via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.3.2578 build 20231110 and later
QuTS hero h5.1.3.2578 build 20231110 and later
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| ▼ | QNAP Systems Inc. | QTS |
Version: 5.1.x < 5.1.3.2578 build 20231110 |
||||||
|
|||||||||
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T18:02:06.912Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-64", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "QTS", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "5.1.3.2578 build 20231110", status: "affected", version: "5.1.x", versionType: "custom", }, ], }, { defaultStatus: "unaffected", product: "QuTS hero", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "h5.1.3.2578 build 20231110", status: "affected", version: "h5.1.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "Anonymous working with SSD Secure Disclosure", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A prototype pollution vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to override existing attributes with ones that have incompatible type, which may lead to a crash via a network.<br><br>We have already fixed the vulnerability in the following versions:<br>QTS 5.1.3.2578 build 20231110 and later<br>QuTS hero h5.1.3.2578 build 20231110 and later<br>", }, ], value: "A prototype pollution vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to override existing attributes with ones that have incompatible type, which may lead to a crash via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.3.2578 build 20231110 and later\nQuTS hero h5.1.3.2578 build 20231110 and later\n", }, ], impacts: [ { capecId: "CAPEC-77", descriptions: [ { lang: "en", value: "CAPEC-77", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-1321", description: "CWE-1321", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:19:20.645Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-64", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following versions:<br>QTS 5.1.3.2578 build 20231110 and later<br>QuTS hero h5.1.3.2578 build 20231110 and later<br>", }, ], value: "We have already fixed the vulnerability in the following versions:\nQTS 5.1.3.2578 build 20231110 and later\nQuTS hero h5.1.3.2578 build 20231110 and later\n", }, ], source: { advisory: "QSA-23-64", discovery: "EXTERNAL", }, title: "QTS, QuTS hero", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-39296", datePublished: "2024-01-05T16:19:20.645Z", dateReserved: "2023-07-27T06:46:01.476Z", dateUpdated: "2024-08-02T18:02:06.912Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-41288
Vulnerability from cvelistv5
Published
2024-01-05 16:19
Modified
2024-08-02 18:54
Severity ?
EPSS score ?
Summary
An OS command injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow users to execute commands via a network.
We have already fixed the vulnerability in the following version:
Video Station 5.7.2 ( 2023/11/23 ) and later
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| QNAP Systems Inc. | Video Station |
Version: 5.7.x < 5.7.2 ( 2023/11/23 ) |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T18:54:05.158Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-55", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Video Station", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "5.7.2 ( 2023/11/23 )", status: "affected", version: "5.7.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "Vladimir Meier and Thomas Dewaele (Bugscale SA)", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "An OS command injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow users to execute commands via a network.<br><br>We have already fixed the vulnerability in the following version:<br>Video Station 5.7.2 ( 2023/11/23 ) and later<br>", }, ], value: "An OS command injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow users to execute commands via a network.\n\nWe have already fixed the vulnerability in the following version:\nVideo Station 5.7.2 ( 2023/11/23 ) and later\n", }, ], impacts: [ { capecId: "CAPEC-88", descriptions: [ { lang: "en", value: "CAPEC-88", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-78", description: "CWE-78", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:19:10.920Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-55", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following version:<br>Video Station 5.7.2 ( 2023/11/23 ) and later<br>", }, ], value: "We have already fixed the vulnerability in the following version:\nVideo Station 5.7.2 ( 2023/11/23 ) and later\n", }, ], source: { advisory: "QSA-23-55", discovery: "EXTERNAL", }, title: "Video Station", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-41288", datePublished: "2024-01-05T16:19:10.920Z", dateReserved: "2023-08-28T09:45:52.367Z", dateUpdated: "2024-08-02T18:54:05.158Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-45044
Vulnerability from cvelistv5
Published
2024-01-05 16:19
Modified
2024-08-02 20:14
Severity ?
EPSS score ?
Summary
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.4.2596 build 20231128 and later
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| ▼ | QNAP Systems Inc. | QuTS hero |
Version: h5.1.x < h5.1.4.2596 build 20231128 |
||||||
|
|||||||||
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T20:14:18.313Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-27", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "QuTS hero", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "h5.1.4.2596 build 20231128", status: "affected", version: "h5.1.x", versionType: "custom", }, ], }, { defaultStatus: "unaffected", product: "QTS", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "5.1.4.2596 build 20231128", status: "affected", version: "5.1.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "Jiaxu Zhao && Bingwei Peng", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.<br><br>We have already fixed the vulnerability in the following versions:<br>QTS 5.1.4.2596 build 20231128 and later<br>QuTS hero h5.1.4.2596 build 20231128 and later<br>", }, ], value: "A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.4.2596 build 20231128 and later\nQuTS hero h5.1.4.2596 build 20231128 and later\n", }, ], impacts: [ { capecId: "CAPEC-100", descriptions: [ { lang: "en", value: "CAPEC-100", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 3.8, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-120", description: "CWE-120", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:19:00.887Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-27", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following versions:<br>QTS 5.1.4.2596 build 20231128 and later<br>QuTS hero h5.1.4.2596 build 20231128 and later<br>", }, ], value: "We have already fixed the vulnerability in the following versions:\nQTS 5.1.4.2596 build 20231128 and later\nQuTS hero h5.1.4.2596 build 20231128 and later\n", }, ], source: { advisory: "QSA-23-27", discovery: "EXTERNAL", }, title: "QTS, QuTS hero", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-45044", datePublished: "2024-01-05T16:19:00.887Z", dateReserved: "2023-10-03T08:58:16.880Z", dateUpdated: "2024-08-02T20:14:18.313Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-41287
Vulnerability from cvelistv5
Published
2024-01-05 16:19
Modified
2024-08-02 18:54
Severity ?
EPSS score ?
Summary
A SQL injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow users to inject malicious code via a network.
We have already fixed the vulnerability in the following version:
Video Station 5.7.2 ( 2023/11/23 ) and later
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| QNAP Systems Inc. | Video Station |
Version: 5.7.x < 5.7.2 ( 2023/11/23 ) |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T18:54:04.999Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-55", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "Video Station", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "5.7.2 ( 2023/11/23 )", status: "affected", version: "5.7.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "Vladimir Meier and Thomas Dewaele (Bugscale SA)", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A SQL injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow users to inject malicious code via a network.<br><br>We have already fixed the vulnerability in the following version:<br>Video Station 5.7.2 ( 2023/11/23 ) and later<br>", }, ], value: "A SQL injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow users to inject malicious code via a network.\n\nWe have already fixed the vulnerability in the following version:\nVideo Station 5.7.2 ( 2023/11/23 ) and later\n", }, ], impacts: [ { capecId: "CAPEC-66", descriptions: [ { lang: "en", value: "CAPEC-66", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-89", description: "CWE-89", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:19:15.421Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-55", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following version:<br>Video Station 5.7.2 ( 2023/11/23 ) and later<br>", }, ], value: "We have already fixed the vulnerability in the following version:\nVideo Station 5.7.2 ( 2023/11/23 ) and later\n", }, ], source: { advisory: "QSA-23-55", discovery: "EXTERNAL", }, title: "Video Station", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-41287", datePublished: "2024-01-05T16:19:15.421Z", dateReserved: "2023-08-28T09:45:52.367Z", dateUpdated: "2024-08-02T18:54:04.999Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-45041
Vulnerability from cvelistv5
Published
2024-01-05 16:18
Modified
2024-11-14 18:15
Severity ?
EPSS score ?
Summary
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.4.2596 build 20231128 and later
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| ▼ | QNAP Systems Inc. | QuTS hero |
Version: h5.1.x < h5.1.4.2596 build 20231128 |
||||||
|
|||||||||
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T20:14:18.410Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-27", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2023-45041", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-11-14T18:15:45.957129Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-11-14T18:15:55.365Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "QuTS hero", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "h5.1.4.2596 build 20231128", status: "affected", version: "h5.1.x", versionType: "custom", }, ], }, { defaultStatus: "unaffected", product: "QTS", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "5.1.4.2596 build 20231128", status: "affected", version: "5.1.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "Jiaxu Zhao && Bingwei Peng", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.<br><br>We have already fixed the vulnerability in the following versions:<br>QTS 5.1.4.2596 build 20231128 and later<br>QuTS hero h5.1.4.2596 build 20231128 and later<br>", }, ], value: "A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.4.2596 build 20231128 and later\nQuTS hero h5.1.4.2596 build 20231128 and later\n", }, ], impacts: [ { capecId: "CAPEC-100", descriptions: [ { lang: "en", value: "CAPEC-100", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 3.8, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-120", description: "CWE-120", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:18:46.583Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-27", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following versions:<br>QTS 5.1.4.2596 build 20231128 and later<br>QuTS hero h5.1.4.2596 build 20231128 and later<br>", }, ], value: "We have already fixed the vulnerability in the following versions:\nQTS 5.1.4.2596 build 20231128 and later\nQuTS hero h5.1.4.2596 build 20231128 and later\n", }, ], source: { advisory: "QSA-23-27", discovery: "EXTERNAL", }, title: "QTS, QuTS hero", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-45041", datePublished: "2024-01-05T16:18:46.583Z", dateReserved: "2023-10-03T08:58:16.880Z", dateUpdated: "2024-11-14T18:15:55.365Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-45042
Vulnerability from cvelistv5
Published
2024-01-05 16:18
Modified
2024-08-02 20:14
Severity ?
EPSS score ?
Summary
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.4.2596 build 20231128 and later
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| ▼ | QNAP Systems Inc. | QuTS hero |
Version: h5.1.x < h5.1.4.2596 build 20231128 |
||||||
|
|||||||||
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T20:14:19.354Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-27", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "QuTS hero", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "h5.1.4.2596 build 20231128", status: "affected", version: "h5.1.x", versionType: "custom", }, ], }, { defaultStatus: "unaffected", product: "QTS", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "5.1.4.2596 build 20231128", status: "affected", version: "5.1.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "Jiaxu Zhao && Bingwei Peng", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.<br><br>We have already fixed the vulnerability in the following versions:<br>QTS 5.1.4.2596 build 20231128 and later<br>QuTS hero h5.1.4.2596 build 20231128 and later<br>", }, ], value: "A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.4.2596 build 20231128 and later\nQuTS hero h5.1.4.2596 build 20231128 and later\n", }, ], impacts: [ { capecId: "CAPEC-100", descriptions: [ { lang: "en", value: "CAPEC-100", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 3.8, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-120", description: "CWE-120", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:18:51.368Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-27", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following versions:<br>QTS 5.1.4.2596 build 20231128 and later<br>QuTS hero h5.1.4.2596 build 20231128 and later<br>", }, ], value: "We have already fixed the vulnerability in the following versions:\nQTS 5.1.4.2596 build 20231128 and later\nQuTS hero h5.1.4.2596 build 20231128 and later\n", }, ], source: { advisory: "QSA-23-27", discovery: "EXTERNAL", }, title: "QTS, QuTS hero", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-45042", datePublished: "2024-01-05T16:18:51.368Z", dateReserved: "2023-10-03T08:58:16.880Z", dateUpdated: "2024-08-02T20:14:19.354Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-47219
Vulnerability from cvelistv5
Published
2024-01-05 16:18
Modified
2024-08-02 21:01
Severity ?
EPSS score ?
Summary
A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network.
We have already fixed the vulnerability in the following version:
QuMagie 2.2.1 and later
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| QNAP Systems Inc. | QuMagie |
Version: 2.2.x < 2.2.1 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T21:01:22.918Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-32", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "QuMagie", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "2.2.1", status: "affected", version: "2.2.x", versionType: "custom", }, ], }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network.<br><br>We have already fixed the vulnerability in the following version:<br>QuMagie 2.2.1 and later<br>", }, ], value: "A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network.\n\nWe have already fixed the vulnerability in the following version:\nQuMagie 2.2.1 and later\n", }, ], impacts: [ { capecId: "CAPEC-66", descriptions: [ { lang: "en", value: "CAPEC-66", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 3.5, baseSeverity: "LOW", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-89", description: "CWE-89", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:18:32.213Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-32", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following version:<br>QuMagie 2.2.1 and later<br>", }, ], value: "We have already fixed the vulnerability in the following version:\nQuMagie 2.2.1 and later\n", }, ], source: { advisory: "QSA-23-32", discovery: "EXTERNAL", }, title: "QuMagie", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-47219", datePublished: "2024-01-05T16:18:32.213Z", dateReserved: "2023-11-03T09:47:36.054Z", dateUpdated: "2024-08-02T21:01:22.918Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-45039
Vulnerability from cvelistv5
Published
2024-01-05 16:18
Modified
2024-08-26 18:42
Severity ?
EPSS score ?
Summary
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.4.2596 build 20231128 and later
QuTS hero h5.1.4.2596 build 20231128 and later
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| ▼ | QNAP Systems Inc. | QTS |
Version: 5.1.x < 5.1.4.2596 build 20231128 |
||||||
|
|||||||||
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T20:14:19.615Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-27", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2023-45039", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-08-26T18:36:22.572724Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-08-26T18:42:32.314Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "QTS", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "5.1.4.2596 build 20231128", status: "affected", version: "5.1.x", versionType: "custom", }, ], }, { defaultStatus: "unaffected", product: "QuTS hero", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "h5.1.4.2596 build 20231128", status: "affected", version: "h5.1.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "Jiaxu Zhao && Bingwei Peng", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.<br><br>We have already fixed the vulnerability in the following versions:<br>QTS 5.1.4.2596 build 20231128 and later<br>QuTS hero h5.1.4.2596 build 20231128 and later<br>", }, ], value: "A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.4.2596 build 20231128 and later\nQuTS hero h5.1.4.2596 build 20231128 and later\n", }, ], impacts: [ { capecId: "CAPEC-100", descriptions: [ { lang: "en", value: "CAPEC-100", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 3.8, baseSeverity: "LOW", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-120", description: "CWE-120", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:18:37.227Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-27", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following versions:<br>QTS 5.1.4.2596 build 20231128 and later<br>QuTS hero h5.1.4.2596 build 20231128 and later<br>", }, ], value: "We have already fixed the vulnerability in the following versions:\nQTS 5.1.4.2596 build 20231128 and later\nQuTS hero h5.1.4.2596 build 20231128 and later\n", }, ], source: { advisory: "QSA-23-27", discovery: "EXTERNAL", }, title: "QTS, QuTS hero", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-45039", datePublished: "2024-01-05T16:18:37.227Z", dateReserved: "2023-10-03T08:58:16.879Z", dateUpdated: "2024-08-26T18:42:32.314Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-41289
Vulnerability from cvelistv5
Published
2024-01-05 16:19
Modified
2024-08-02 18:54
Severity ?
EPSS score ?
Summary
An OS command injection vulnerability has been reported to affect QcalAgent. If exploited, the vulnerability could allow authenticated users to execute commands via a network.
We have already fixed the vulnerability in the following version:
QcalAgent 1.1.8 and later
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| QNAP Systems Inc. | QcalAgent |
Version: 1.1.x < 1.1.8 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T18:54:05.182Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://www.qnap.com/en/security-advisory/qsa-23-34", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { defaultStatus: "unaffected", product: "QcalAgent", vendor: "QNAP Systems Inc.", versions: [ { lessThan: "1.1.8", status: "affected", version: "1.1.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "lebr0nli (Alan Li)", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "An OS command injection vulnerability has been reported to affect QcalAgent. If exploited, the vulnerability could allow authenticated users to execute commands via a network.<br><br>We have already fixed the vulnerability in the following version:<br>QcalAgent 1.1.8 and later<br>", }, ], value: "An OS command injection vulnerability has been reported to affect QcalAgent. If exploited, the vulnerability could allow authenticated users to execute commands via a network.\n\nWe have already fixed the vulnerability in the following version:\nQcalAgent 1.1.8 and later\n", }, ], impacts: [ { capecId: "CAPEC-88", descriptions: [ { lang: "en", value: "CAPEC-88", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-78", description: "CWE-78", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2024-01-05T16:19:05.701Z", orgId: "2fd009eb-170a-4625-932b-17a53af1051f", shortName: "qnap", }, references: [ { url: "https://www.qnap.com/en/security-advisory/qsa-23-34", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following version:<br>QcalAgent 1.1.8 and later<br>", }, ], value: "We have already fixed the vulnerability in the following version:\nQcalAgent 1.1.8 and later\n", }, ], source: { advisory: "QSA-23-34", discovery: "EXTERNAL", }, title: "QcalAgent", x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "2fd009eb-170a-4625-932b-17a53af1051f", assignerShortName: "qnap", cveId: "CVE-2023-41289", datePublished: "2024-01-05T16:19:05.701Z", dateReserved: "2023-08-28T09:45:52.367Z", dateUpdated: "2024-08-02T18:54:05.182Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.