QNAP QSS prior 1.0.2 Build 20210122 out-of-bounds read

EntryeditHistoryDiffjsonxmlCTI

A vulnerability, which was classified as problematic, has been found in QNAP QSS. This issue affects some unknown functionality. Upgrading to version 1.0.2 Build 20210122 eliminates this vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1133765806/13/2021VulD...cve_cnaQNAP Systems, Inc.nvd.nist.gov06/13/2021accepted70
1133765706/13/2021VulD...cvss3_meta_tempscore3.0see documentation06/13/2021accepted90
1133765606/13/2021VulD...cvss3_vuldb_tempscore3.006/13/2021accepted90
1133765506/13/2021VulD...cvss2_vuldb_tempscore1.606/13/2021accepted90
1133765406/13/2021VulD...cve_nvd_summaryAn out-of-bounds read vulnerability has been reported to affect certain QNAP switches running QSS. If exploited, this vulnerability allows attackers to read sensitive information on the system. This issue affects: QNAP Systems Inc. QSS versions prior to 1.0.2 build 20210122 on QSW-M2108-2C; versions prior to 1.0.2 build 20210122 on QSW-M2108-2S; versions prior to 1.0.2 build 20210122 on QSW-M2108R-2C.cve.mitre.org06/13/2021accepted70
1133765306/13/2021VulD...cve_assigned1616022000cve.mitre.org06/13/2021accepted70
1133291106/11/2021VulD...price_0day$0-$5ksee documentation06/11/2021accepted90
1133291006/11/2021VulD...cvss3_meta_tempscore3.1see documentation06/11/2021accepted90
1133290906/11/2021VulD...cvss3_meta_basescore3.1see documentation06/11/2021accepted90
1133290806/11/2021VulD...cvss3_vuldb_tempscore3.106/11/2021accepted90
1133290706/11/2021VulD...cvss3_vuldb_basescore3.106/11/2021accepted90
1133290606/11/2021VulD...cvss2_vuldb_tempscore1.806/11/2021accepted90
1133290506/11/2021VulD...cvss2_vuldb_basescore1.806/11/2021accepted90
1133290406/11/2021VulD...cvss3_vuldb_eXderived from historical data06/11/2021accepted80
1133290306/11/2021VulD...cvss2_vuldb_eNDderived from historical data06/11/2021accepted80
1133290206/11/2021VulD...cvss2_vuldb_rlOFderived from vuldb v3 vector06/11/2021accepted80
1133290106/11/2021VulD...cvss2_vuldb_rcCderived from vuldb v3 vector06/11/2021accepted80
1133290006/11/2021VulD...cvss2_vuldb_aiNderived from vuldb v3 vector06/11/2021accepted80
1133289906/11/2021VulD...cvss2_vuldb_iiNderived from vuldb v3 vector06/11/2021accepted80
1133289806/11/2021VulD...cvss2_vuldb_ciPderived from vuldb v3 vector06/11/2021accepted80

Do you need the next level of professionalism?

Upgrade your account now!