Qnap Quts_hero

247 CVEs affecting Qnap Quts_hero. Latest disclosed: 2026-06-10. Critical: 16, High: 68.

Top CVEs affecting Qnap Quts_hero
CVESeverityScorePublishedSummary
CVE-2024-32766Critical10.02024-04-26An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to…
CVE-2021-28799Critical10.02021-05-13An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 (Hybrid Backup Sync. ) If exploited, the vulnerability allows remote…
CVE-2025-66277Critical9.82026-02-11A link following vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to t…
CVE-2025-62849Critical9.82025-12-16An SQL injection vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to e…
CVE-2025-59385Critical9.82025-12-16An authentication bypass by spoofing vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit th…
CVE-2024-50393Critical9.82024-12-06A command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attack…
CVE-2024-21899Critical9.82024-03-08An improper authentication vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users…
CVE-2023-23368Critical9.82023-11-03An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to…
CVE-2022-27596Critical9.82023-01-30A vulnerability has been reported to affect QNAP device running QuTS hero, QTS. If exploited, this vulnerability allows remote attackers to inject malicious co…
CVE-2021-34344Critical9.82021-09-10A stack buffer overflow vulnerability has been reported to affect QNAP device running QUSBCam2. If exploited, this vulnerability allows attackers to execute ar…
CVE-2021-28804Critical9.82021-07-01A command injection vulnerabilities have been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary comm…
CVE-2021-28802Critical9.82021-07-01A command injection vulnerabilities have been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary comm…
CVE-2020-2509Critical9.82021-04-17A command injection vulnerability has been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary command…
CVE-2019-7198Critical9.82020-12-10This command injection vulnerability allows attackers to execute arbitrary commands in a compromised application. QNAP have already fixed this vulnerability in…
CVE-2024-48859Critical9.12024-12-06An improper authentication vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote…
CVE-2023-45025Critical9.02024-02-02An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to…
CVE-2024-21897High8.92024-09-06A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow auth…
CVE-2025-30264High8.82025-08-29A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains a user account, they can then…
CVE-2025-22481High8.82025-06-06A command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attack…
CVE-2024-53691High8.82024-12-06A link following vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers…