exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 3

CVE-2024-50403

около 1 года назад

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. We have already fixed the vulnerability in the following versions: QTS 5.2.2.2950 build 20241114 and later QuTS hero h5.2.2.2952 build 20241116 and later

CVSS3: 7.2

EPSS: Низкий

GHSA-qwrm-c5rf-9g92

около 1 года назад

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. We have already fixed the vulnerability in the following versions: QTS 5.2.2.2950 build 20241114 and later QuTS hero h5.2.2.2952 build 20241116 and later

CVSS3: 7.2

EPSS: Низкий

BDU:2025-00740

около 1 года назад

Уязвимость операционных систем QuTS hero и QTS сетевых устройств Qnap, связанная с недостаточной обработкой форматной строки, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации c root привилегиями

CVSS3: 4.7

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-50403 A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. We have already fixed the vulnerability in the following versions: QTS 5.2.2.2950 build 20241114 and later QuTS hero h5.2.2.2952 build 20241116 and later	CVSS3: 7.2	1% Низкий	около 1 года назад
GHSA-qwrm-c5rf-9g92 A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. We have already fixed the vulnerability in the following versions: QTS 5.2.2.2950 build 20241114 and later QuTS hero h5.2.2.2952 build 20241116 and later	CVSS3: 7.2	1% Низкий	около 1 года назад
BDU:2025-00740 Уязвимость операционных систем QuTS hero и QTS сетевых устройств Qnap, связанная с недостаточной обработкой форматной строки, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации c root привилегиями	CVSS3: 4.7	1% Низкий	около 1 года назад

Уязвимостей на страницу