CVE-2023-45028

CVSS v2.0

6.1

Medium

Vector

AV:N/AC:L/Au:M/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions QNAP QTS versions prior to 5.1.5.2645 build 20240116 QNAP QuTS hero versions prior to h5.1.5.2647 build 20240118 QNAP QuTScloud versions prior to c5.1.5.2651

Description An uncontrolled resource consumption issue has been reported, potentially allowing authenticated administrators to launch a denial-of-service (DoS) attack via a network. This could be exploited by a remote attacker to cause a denial of service.

Recommendations For QNAP QTS versions prior to 5.1.5.2645 build 20240116, update to QTS 5.1.5.2645 build 20240116 or later. For QNAP QuTS hero versions prior to h5.1.5.2647 build 20240118, update to QuTS hero h5.1.5.2647 build 20240118 or later. For QNAP QuTScloud versions prior to c5.1.5.2651, update to QuTScloud c5.1.5.2651 or later.

Fix

Resource Exhaustion

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-770

Related Identifiers

BDU:2024-01290

CVE-2023-45028

Affected Products

Qnap Qts

Qnap Quts Hero

Qnap Qutscloud

CVE-2023-45028

Weakness Enumeration

Related Identifiers

Affected Products

References · 7