Izutzienbinhnt

#7398of 53,633

37Total CVSS

Vulnerabilities · 6

Medium

3

High

3

Qnap · Qnap Quts Hero · CVE-2024-50405

**Name of the Vulnerable Software and Affected Versions** QNAP QTS versions prior to 5.2.3.3006 build 20250108 QNAP QuTS hero versions prior to h5.2.3.3006 build 20250108 **Description** The issue is related to an improper neutralization of CRLF sequences, also known as 'CRLF Injection'. This could allow remote attackers with administrator access to modify application data. **Recommendations** For QNAP QTS versions prior to 5.2.3.3006 build 20250108, update to QTS 5.2.3.3006 build 20250108 or later. For QNAP QuTS hero versions prior to h5.2.3.3006 build 20250108, update to QuTS hero h5.2.3.3006 build 20250108 or later.

Qnap · Qnap Qts · CVE-2024-53692

**Name of the Vulnerable Software and Affected Versions** QNAP QTS versions prior to 5.2.3.3006 build 20250108 QNAP QuTS hero versions prior to h5.2.3.3006 build 20250108 **Description** A command injection issue has been reported, potentially allowing remote attackers with administrator access to execute arbitrary commands. **Recommendations** For QNAP QTS versions prior to 5.2.3.3006 build 20250108, update to QTS 5.2.3.3006 build 20250108 or later. For QNAP QuTS hero versions prior to h5.2.3.3006 build 20250108, update to QuTS hero h5.2.3.3006 build 20250108 or later.

Qnap · Qnap Qts · CVE-2024-53693

**Name of the Vulnerable Software and Affected Versions** QNAP QTS versions prior to 5.2.3.3006 build 20250108 QNAP QuTS hero versions prior to h5.2.3.3006 build 20250108 **Description** An improper neutralization of CRLF sequences, also known as 'CRLF Injection', has been reported. This issue could allow remote attackers with user access to modify application data. **Recommendations** For QNAP QTS versions prior to 5.2.3.3006 build 20250108, update to QTS 5.2.3.3006 build 20250108 or later. For QNAP QuTS hero versions prior to h5.2.3.3006 build 20250108, update to QuTS hero h5.2.3.3006 build 20250108 or later.

Qnap · Qnap Qts · CVE-2024-53697

**Name of the Vulnerable Software and Affected Versions** QNAP QTS versions prior to 5.2.3.3006 build 20250108 QNAP QuTS hero versions prior to h5.2.3.3006 build 20250108 **Description** An out-of-bounds write issue has been reported, potentially allowing remote attackers with administrator access to modify or corrupt memory. **Recommendations** For QNAP QTS versions prior to 5.2.3.3006 build 20250108, update to QTS 5.2.3.3006 build 20250108 or later. For QNAP QuTS hero versions prior to h5.2.3.3006 build 20250108, update to QuTS hero h5.2.3.3006 build 20250108 or later.

Qnap · Qnap Qts · CVE-2024-53698

**Name of the Vulnerable Software and Affected Versions** QNAP QTS versions prior to 5.2.3.3006 build 20250108 QNAP QuTS hero versions prior to h5.2.3.3006 build 20250108 **Description** A double free issue has been reported, potentially allowing remote attackers with administrator access to modify memory. **Recommendations** For QNAP QTS versions prior to 5.2.3.3006 build 20250108, update to QTS 5.2.3.3006 build 20250108 or later. For QNAP QuTS hero versions prior to h5.2.3.3006 build 20250108, update to QuTS hero h5.2.3.3006 build 20250108 or later.

Qnap · Qnap Qts · CVE-2024-53699

**Name of the Vulnerable Software and Affected Versions** QNAP QTS versions prior to 5.2.3.3006 build 20250108 QNAP QuTS hero versions prior to 5.2.3.3006 build 20250108 **Description** An out-of-bounds write issue has been reported, potentially allowing remote attackers with administrator access to modify or corrupt memory. **Recommendations** For QNAP QTS versions prior to 5.2.3.3006 build 20250108, update to QTS 5.2.3.3006 build 20250108 or later. For QNAP QuTS hero versions prior to 5.2.3.3006 build 20250108, update to QuTS hero h5.2.3.3006 build 20250108 or later.