PT-2023-7828 · Qnap · Multimedia Console

H4Lo

Published

2023-09-21

Updated

2023-09-26

CVE-2023-23364

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Multimedia Console versions prior to 1.4.7 Multimedia Console versions prior to 2.1.1

Description A buffer copy without checking size of input vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows remote users to execute code via unspecified vectors.

Recommendations For Multimedia Console versions prior to 1.4.7, update to version 1.4.7 or later. For Multimedia Console versions prior to 2.1.1, update to version 2.1.1 or later.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

BDU:2023-08899

CVE-2023-23364

Affected Products

Multimedia Console

PT-2023-7828 · Qnap · Multimedia Console

CVE-2023-23364

Weakness Enumeration

Related Identifiers

Affected Products

References · 12