CVE-2024-37044

CVSS v3.1

7.2

High

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions QNAP QTS versions prior to 5.2.1.2930 build 20241025 QNAP QuTS hero versions prior to h5.2.1.2929 build 20241025

Description A buffer copy without checking the size of input issue has been reported, potentially allowing remote attackers with administrator access to execute code if exploited.

Recommendations For QNAP QTS versions prior to 5.2.1.2930 build 20241025, update to QTS 5.2.1.2930 build 20241025 or later. For QNAP QuTS hero versions prior to h5.2.1.2929 build 20241025, update to QuTS hero h5.2.1.2929 build 20241025 or later.

Fix

Stack Overflow

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-121CWE-120

Related Identifiers

CVE-2024-37044

Affected Products

Qnap Qts

Quts Hero

CVE-2024-37044

Weakness Enumeration

Related Identifiers

Affected Products

References · 5