QNAP QVR

CPE Details

QNAP QVR
qnap
qvr
-
2021-10-05
10h25 +00:00
2021-10-05
11h33 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:qnap:qvr:-:*:*:*:*:*:*:*

Informations

Vendor

qnap

Product

qvr

Version

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-23355 2023-03-29 04h02 +00:00 An OS command injection vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows remote authenticated administrators to execute commands via unspecified vectors. QES is not affected. We have already fixed the vulnerability in the following versions: QTS 5.0.1.2346 build 20230322 and later QTS 4.5.4.2374 build 20230416 and later QuTS hero h5.0.1.2348 build 20230324 and later QuTS hero h4.5.4.2374 build 20230417 and later QuTScloud c5.0.1.2374 and later
7.2
High
CVE-2022-27597 2023-03-29 00h00 +00:00 A vulnerability has been reported to affect QNAP operating systems. If exploited, the out-of-bounds read vulnerability allows remote authenticated administrators to get secret values. The vulnerability affects the following QNAP operating systems: QTS, QuTS hero, QuTScloud, QVP (QVR Pro appliances) We have already fixed the vulnerability in the following versions: QTS 5.0.1.2346 build 20230322 and later QuTS hero h5.0.1.2348 build 20230324 and later
2.7
Low
CVE-2022-27588 2022-05-05 16h50 +00:00 We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401 and later
9.8
Critical
CVE-2021-38686 2021-11-26 14h00 +00:00 An improper authentication vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of QVR: QVR FW 5.1.6 build 20211109 and later
8.8
High
CVE-2021-38685 2021-11-26 14h00 +00:00 A command injection vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR FW 5.1.6 build 20211109 and later
9.8
Critical
CVE-2021-34352 2021-10-01 02h50 +00:00 A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.5 build 20210902 and later
9.8
Critical
CVE-2021-34351 2021-09-27 00h45 +00:00 A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.5 build 20210803 and later
9.8
Critical
CVE-2021-34349 2021-09-27 00h45 +00:00 A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.5 build 20210803 and later
7.2
High
CVE-2021-34348 2021-09-27 00h45 +00:00 A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.5 build 20210803 and later
9.8
Critical