Qnap Nas
11 CVEs affecting Qnap Nas. Latest disclosed: 2021-11-20. Critical: 2, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-28797 | Critical | 9.8 | 2021-04-14 | A stack-based buffer overflow vulnerability has been reported to affect QNAP NAS devices running Surveillance Station. If exploited, this vulnerability allows… |
CVE-2020-2501 | Critical | 9.8 | 2021-02-17 | A stack-based buffer overflow vulnerability has been reported to affect QNAP NAS devices running Surveillance Station. If exploited, this vulnerability allows… |
CVE-2021-34356 | High | 7.6 | 2021-10-01 | A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Photo Station. If exploited, this vulnerability allows remote attack… |
CVE-2021-34355 | High | 7.6 | 2021-10-01 | A cross-site scripting (XSS) vulnerability has been reported to affect QNAP NAS running Photo Station. If exploited, this vulnerability allows remote attackers… |
CVE-2021-34354 | High | 7.6 | 2021-10-01 | A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Photo Station. If exploited, this vulnerability allows remote attack… |
CVE-2021-34357 | Medium | 6.9 | 2021-11-13 | A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running QmailAgent. If exploited, this vulnerability allows remote attackers… |
CVE-2021-34358 | Medium | 6.8 | 2021-11-20 | We have already fixed this vulnerability in the following versions of QmailAgent: QmailAgent 3.0.2 ( 2021/08/25 ) and later |
CVE-2021-38675 | Medium | 5.4 | 2021-10-01 | A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Image2PDF. If exploited, this vulnerability allows remote attackers… |
CVE-2021-38681 | Medium | 5.3 | 2021-11-20 | A reflected cross-site scripting (XSS) vulnerability has been reported to affect QNAP NAS running Ragic Cloud DB. If exploited, this vulnerability allows remot… |
CVE-2013-0143 | | 2013-06-07 | cgi-bin/pingping.cgi on QNAP VioStor NVR devices with firmware 4.0.3, and in the Surveillance Station Pro component in QNAP NAS, allows remote authenticated us… | |
CVE-2013-0142 | | 2013-06-07 | QNAP VioStor NVR devices with firmware 4.0.3, and the Surveillance Station Pro component in QNAP NAS, have a hardcoded guest account, which allows remote attac… |