Qnap 漏洞

时间轴

类型

Network Attached Storage Software	162
Not Defined	106
Cloud Software	4
Firewall Software	4
Mail Server Software	2

产品

QNAP QTS	148
QNAP QuTS hero	51
QNAP QuTScloud	44
QNAP QuTS Hero	27
QNAP Photo Station	14

修正

Official Fix	221
Temporary Fix	1
Workaround	0
Unavailable	4
Not Defined	54

易受攻击性

High	5
Functional	0
Proof-of-Concept	14
Unproven	1
Not Defined	260

访问向量

Not Defined	0
Physical	0
Local	15
Adjacent	17
Network	248

身份验证

Not Defined	0
High	62
Low	76
None	142

用户交互

Not Defined	0
Required	58
None	222

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	3
≤4	20
≤5	40
≤6	76
≤7	37
≤8	39
≤9	53
≤10	12

CVSSv3 Temp

≤1	0
≤2	0
≤3	5
≤4	18
≤5	45
≤6	80
≤7	39
≤8	34
≤9	47
≤10	12

VulDB

≤1	0
≤2	1
≤3	14
≤4	42
≤5	58
≤6	43
≤7	29
≤8	62
≤9	19
≤10	12

NVD

≤1	0
≤2	1
≤3	0
≤4	0
≤5	13
≤6	8
≤7	32
≤8	45
≤9	23
≤10	40

CNA

≤1	0
≤2	0
≤3	2
≤4	17
≤5	15
≤6	33
≤7	15
≤8	23
≤9	20
≤10	13

供应商

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	1
≤9	0
≤10	0

零日攻击

<1k	51
<2k	134
<5k	94
<10k	0
<25k	1
<50k	0
<100k	0
≥100k	0

本日攻击

<1k	280
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

攻击市场容量

🔴 CTI 活动

Affected Products (52): Container Station (1), Helpdesk (5), Image2PDF (1), Kazoo Server (2), Media Streaming Add-on (1), Multimedia Console (4), Music Station (7), NAS (10), NAS Application Media Streaming Add-On (4), NVR (3), NVR Storage Expansion (2), NetBak Replicator (1), Photo Station (15), Proxy Server (4), Q'center (2), Q'center Virtual Appliance (7), QES (4), QSS (2), QTS (153), QUSBCam2 (2), QVP (3), QVPN (2), QVR (10), QVR Elite (5), QVR Guard (5), QVR Pro (5), QVR Pro Appliance (1), QVR Pro Client (1), QcalAgent (3), Qfile App (1), Qfinder Pro (1), QmailAgent (2), Qsync (1), Qsync Central (1), QuLog Center (1), QuMagie (6), QuNetSwitch (1), QuTS (5), QuTS Hero (27), QuTScloud (47), QuTS hero (56), SS-839 (1), Signage Station (4), Surveillance Station Pro (2), TS-469U Turbo NAS (1), TS212P (1), Ts-239 Pro Turbo Nas (3), Video Station (9), VioStor NVR (1), Viostor Network Video Recorder (1), myQNAPcloud (1), myQNAPcloud Connect (1)

Link to Vendor Website: https://www.qnap.com/

已发布	Base	Temp	漏洞	Prod	易	修正	EPSS	CTI	CVE
2024-03-08	3.6	3.6	QNAP QuTScloud/QTS/QuTS hero Network/Virtual Switch 跨网站脚本	Network Attached Storage Software	Not Defined	Official Fix	0.00043	0.00	CVE-2023-32969
2024-03-08	4.6	4.6	QNAP Systems Photo Station 目录遍历	未知	Not Defined	Official Fix	0.00044	0.06	CVE-2023-47221
2024-03-08	4.7	4.6	QNAP myQNAPcloud/QTS SQL注入	Network Attached Storage Software	Not Defined	Official Fix	0.00044	0.00	CVE-2024-21901
2024-03-08	5.1	5.0	QNAP QTS/QuTS hero 权限升级	Network Attached Storage Software	Not Defined	Official Fix	0.00043	0.08	CVE-2023-34980
2024-03-08	5.7	5.6	QNAP QTS/QuTS hero/QuTScloud 权限升级	Network Attached Storage Software	Not Defined	Official Fix	0.00046	0.02	CVE-2024-21900
2024-03-08	9.8	9.6	QNAP QTS/QuTS hero/QuTScloud 弱身份验证	Network Attached Storage Software	Not Defined	Official Fix	0.00091	0.04	CVE-2024-21899
2024-02-13	5.4	5.3	QNAP QTS/QuTS hero/QuTScloud 权限升级	Network Attached Storage Software	Not Defined	Official Fix	0.00046	0.04	CVE-2023-50358
2024-02-13	5.4	5.3	QNAP QTS/QuTS hero/QuTScloud 权限升级	Network Attached Storage Software	Not Defined	Official Fix	0.00305	0.03	CVE-2023-47218
2024-02-02	5.2	5.2	QNAP QTS/QuTS hero/QuTScloud 内存损坏	Network Attached Storage Software	Not Defined	Official Fix	0.00055	0.02	CVE-2023-45035
2024-02-02	4.7	4.7	QNAP QTS/QuTS hero/QuTScloud 目录遍历	Network Attached Storage Software	Not Defined	Official Fix	0.00050	0.02	CVE-2023-45027
2024-02-02	4.4	4.3	QNAP QTS/QuTS hero/QuTScloud 拒绝服务	Network Attached Storage Software	Not Defined	Official Fix	0.00044	0.02	CVE-2023-45028
2024-02-02	4.7	4.7	QNAP QTS/QuTS hero/QuTScloud 目录遍历	Network Attached Storage Software	Not Defined	Official Fix	0.00050	0.03	CVE-2023-45026
2024-02-02	9.0	8.8	QNAP QTS/QuTS hero/QuTScloud 权限升级	Network Attached Storage Software	Not Defined	Official Fix	0.00067	0.04	CVE-2023-45025
2024-02-02	5.2	5.2	QNAP QTS/QuTS hero/QuTScloud 内存损坏	Network Attached Storage Software	Not Defined	Official Fix	0.00055	0.06	CVE-2023-41292
2024-02-02	5.8	5.7	QNAP QTS/QuTS hero/QuTScloud 权限升级	Network Attached Storage Software	Not Defined	Official Fix	0.00047	0.02	CVE-2023-41283
2024-02-02	5.8	5.7	QNAP QTS/QuTS hero/QuTScloud 权限升级	Network Attached Storage Software	Not Defined	Official Fix	0.00047	0.02	CVE-2023-41282
2024-02-02	5.8	5.7	QNAP QTS/QuTS hero/QuTScloud 权限升级	Network Attached Storage Software	Not Defined	Official Fix	0.00047	0.02	CVE-2023-41281
2024-02-02	5.8	5.7	QNAP QTS/QuTS hero/QuTScloud 内存损坏	Network Attached Storage Software	Not Defined	Official Fix	0.00053	0.02	CVE-2023-41280
2024-02-02	5.8	5.7	QNAP QTS/QuTS hero/QuTScloud 内存损坏	Network Attached Storage Software	Not Defined	Official Fix	0.00053	0.02	CVE-2023-41279
2024-02-02	5.8	5.7	QNAP QTS/QuTS hero/QuTScloud 内存损坏	Network Attached Storage Software	Not Defined	Official Fix	0.00053	0.02	CVE-2023-41278
2024-02-02	5.8	5.7	QNAP QTS/QuTS hero/QuTScloud 内存损坏	Network Attached Storage Software	Not Defined	Official Fix	0.00053	0.05	CVE-2023-41277
2024-02-02	5.5	5.5	QNAP QTS/QuTS hero/QuTScloud 内存损坏	Network Attached Storage Software	Not Defined	Official Fix	0.00055	0.03	CVE-2023-41276
2024-02-02	5.8	5.7	QNAP QTS/QuTS hero/QuTScloud 内存损坏	Network Attached Storage Software	Not Defined	Official Fix	0.00055	0.02	CVE-2023-41275
2024-02-02	4.4	4.3	QNAP QTS/QuTS hero/QuTScloud 拒绝服务	Network Attached Storage Software	Not Defined	Official Fix	0.00044	0.02	CVE-2023-41274
2024-02-02	5.5	5.5	QNAP QTS/QuTS hero/QuTScloud 内存损坏	Network Attached Storage Software	Not Defined	Official Fix	0.00055	0.02	CVE-2023-41273

255 更多条目未显示

🔒 Login Required

You need to signup and login to see more of the remaining 255 results.

◂ 上一步一览下一步 ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!