Vulnerability-Lookup

CVE-2023-34979 (GCVE-0-2023-34979)

Vulnerability from cvelistv5 – Published: 2024-09-06 16:27 – Updated: 2024-09-06 17:22

Title

QTS, QuTS hero

Summary

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 4.5.4.2790 build 20240605 and later QuTS hero h4.5.4.2790 build 20240606 and later

Severity ?

6.6 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L

CWE

CWE-78

Assigner

qnap

References

URL

GHSA-GXM8-54CQ-9H89

Vulnerability from github – Published: 2024-09-06 18:31 – Updated: 2024-09-06 18:31

Details

We have already fixed the vulnerability in the following versions: QTS 4.5.4.2790 build 20240605 and later QuTS hero h4.5.4.2790 build 20240606 and later

Severity ?

6.6 (Medium)


                  
                    CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-34979"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-78"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-09-06T17:15:11Z",
    "severity": "MODERATE"
  },
  "details": "An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 4.5.4.2790 build 20240605 and later\nQuTS hero h4.5.4.2790 build 20240606 and later",
  "id": "GHSA-gxm8-54cq-9h89",
  "modified": "2024-09-06T18:31:33Z",
  "published": "2024-09-06T18:31:33Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-34979"
    },
    {
      "type": "WEB",
      "url": "https://www.qnap.com/en/security-advisory/qsa-24-32"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2023-34979

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Aliases

CVE-2023-34979

Aliases

CVE-2023-34979

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-34979",
    "id": "GSD-2023-34979"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-34979"
      ],
      "id": "GSD-2023-34979",
      "modified": "2023-12-13T01:20:30.558768Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2023-34979",
        "STATE": "RESERVED"
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
          }
        ]
      }
    }
  }
}

FKIE_CVE-2023-34979

Vulnerability from fkie_nvd - Published: 2024-09-06 17:15 - Updated: 2024-09-17 16:54

Severity ?

6.6 (Medium) - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L
7.2 (High) - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	security@qnapsecurity.com.tw	https://www.qnap.com/en/security-advisory/qsa-24-32	Vendor Advisory

Impacted products

Vendor	Product	Version
qnap	qts	4.5.4.1715
qnap	qts	4.5.4.1723
qnap	qts	4.5.4.1741
qnap	qts	4.5.4.1787
qnap	qts	4.5.4.1800
qnap	qts	4.5.4.1892
qnap	qts	4.5.4.1931
qnap	qts	4.5.4.2012
qnap	qts	4.5.4.2117
qnap	qts	4.5.4.2280
qnap	qts	4.5.4.2374
qnap	qts	4.5.4.2467
qnap	qts	4.5.4.2627
qnap	quts_hero	h4.5.4.1771
qnap	quts_hero	h4.5.4.1800
qnap	quts_hero	h4.5.4.1813
qnap	quts_hero	h4.5.4.1848
qnap	quts_hero	h4.5.4.1892
qnap	quts_hero	h4.5.4.1951
qnap	quts_hero	h4.5.4.1971
qnap	quts_hero	h4.5.4.1991
qnap	quts_hero	h4.5.4.2052
qnap	quts_hero	h4.5.4.2138
qnap	quts_hero	h4.5.4.2217
qnap	quts_hero	h4.5.4.2272
qnap	quts_hero	h4.5.4.2374
qnap	quts_hero	h4.5.4.2476
qnap	quts_hero	h4.5.4.2626

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.1715:build_20210630:*:*:*:*:*:*",
              "matchCriteriaId": "9AA3560E-1778-4278-AD5A-6EB3A63A39A5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.1723:build_20210708:*:*:*:*:*:*",
              "matchCriteriaId": "39E9AF51-0254-472F-B31F-6ADF1848CBD6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.1741:build_20210726:*:*:*:*:*:*",
              "matchCriteriaId": "FBB29CD6-B6BC-4C3E-AD44-8D822D10093C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.1787:build_20210910:*:*:*:*:*:*",
              "matchCriteriaId": "A7B98F82-9246-496F-8B15-6F320F8E921F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.1800:build_20210923:*:*:*:*:*:*",
              "matchCriteriaId": "AE7D1FD6-7D8D-4884-AE7B-5C0BC4E39F69",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.1892:build_20211223:*:*:*:*:*:*",
              "matchCriteriaId": "1692CA79-1C6D-4BF8-B49E-3539FCE3E165",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.1931:build_20220128:*:*:*:*:*:*",
              "matchCriteriaId": "C15A236A-4C43-4489-B6F3-EBC9AD786F77",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.2012:build_20220419:*:*:*:*:*:*",
              "matchCriteriaId": "ECE79BCD-8F86-46B1-A3C1-AC503DE1876F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.2117:build_20220802:*:*:*:*:*:*",
              "matchCriteriaId": "8303B319-7EA7-42BC-9246-6EBF81DE4545",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.2280:build_20230112:*:*:*:*:*:*",
              "matchCriteriaId": "5E0F4CCC-F4A5-407D-BA2E-2BBCBA6B731A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.2374:build_20230416:*:*:*:*:*:*",
              "matchCriteriaId": "4D3AE695-CEEB-4A0C-A751-9172781B776B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.2467:build_20230718:*:*:*:*:*:*",
              "matchCriteriaId": "69823B98-D875-441C-B89E-DE953665664A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:qts:4.5.4.2627:build_20231225:*:*:*:*:*:*",
              "matchCriteriaId": "8D0205D7-12D2-428C-87D7-45F19A61ED7B",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.1771:build_20210825:*:*:*:*:*:*",
              "matchCriteriaId": "33191D83-16FB-4BEF-B258-3F04D4D8EC34",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.1800:build_20210923:*:*:*:*:*:*",
              "matchCriteriaId": "05EDD381-FF86-4B19-9A9C-F51BED7CEEED",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.1813:build_20211006:*:*:*:*:*:*",
              "matchCriteriaId": "C597C878-A1CC-4DBA-A96D-5D8913FE54B6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.1848:build_20211109:*:*:*:*:*:*",
              "matchCriteriaId": "A1C66970-8744-4BA1-88EB-2A03F6173327",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.1892:build_20211223:*:*:*:*:*:*",
              "matchCriteriaId": "027242F0-EA9B-494B-A235-046C8BF530F7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.1951:build_20220218:*:*:*:*:*:*",
              "matchCriteriaId": "CFB8B2FE-F13C-4CBB-9137-774DB0117194",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.1971:build_20220310:*:*:*:*:*:*",
              "matchCriteriaId": "77997210-DB56-40A8-88E3-3615E7DB9006",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.1991:build_20220330:*:*:*:*:*:*",
              "matchCriteriaId": "E441AE07-7D88-4D81-ADCC-0E3AE235C72D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.2052:build_20220530:*:*:*:*:*:*",
              "matchCriteriaId": "68F95726-3CBB-44DD-8247-D766F5A0EA32",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.2138:build_20220824:*:*:*:*:*:*",
              "matchCriteriaId": "F901CE2F-AFB9-4616-AB32-481FDD59FD09",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.2217:build_20221111:*:*:*:*:*:*",
              "matchCriteriaId": "FA3E6F9F-1EDC-4E87-B9A3-6031320D2049",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.2272:build_20230105:*:*:*:*:*:*",
              "matchCriteriaId": "FBFB4927-6E24-4B96-A26B-7F08E34EACA9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.2374:build_20230417:*:*:*:*:*:*",
              "matchCriteriaId": "A294F4D1-A15A-4F57-BA54-6612D816B4C3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.2476:build_20230728:*:*:*:*:*:*",
              "matchCriteriaId": "A198FFCF-F0EC-4145-8A93-021C21EB46D0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:qnap:quts_hero:h4.5.4.2626:build_20231225:*:*:*:*:*:*",
              "matchCriteriaId": "76DB09FF-7C10-4EDA-A597-A1CDA5ED2BA2",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 4.5.4.2790 build 20240605 and later\nQuTS hero h4.5.4.2790 build 20240606 and later"
    },
    {
      "lang": "es",
      "value": "Se ha informado de una vulnerabilidad de inyecci\u00f3n de comandos del sistema operativo que afecta a varias versiones del sistema operativo QNAP. Si se explota, la vulnerabilidad podr\u00eda permitir que los administradores autenticados ejecuten comandos a trav\u00e9s de una red. Ya hemos corregido la vulnerabilidad en las siguientes versiones: QTS 4.5.4.2790, compilaci\u00f3n 20240605 y posteriores QuTS hero h4.5.4.2790, compilaci\u00f3n 20240606 y posteriores"
    }
  ],
  "id": "CVE-2023-34979",
  "lastModified": "2024-09-17T16:54:20.340",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 6.6,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "HIGH",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 2.3,
        "impactScore": 3.7,
        "source": "security@qnapsecurity.com.tw",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.2,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.2,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-09-06T17:15:11.653",
  "references": [
    {
      "source": "security@qnapsecurity.com.tw",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.qnap.com/en/security-advisory/qsa-24-32"
    }
  ],
  "sourceIdentifier": "security@qnapsecurity.com.tw",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-78"
        }
      ],
      "source": "security@qnapsecurity.com.tw",
      "type": "Secondary"
    }
  ]
}

CNVD-2025-27829

Vulnerability from cnvd - Published: 2025-11-12

Title

QNAP QTS和QuTS hero操作系统命令注入漏洞（CNVD-2025-27829）

Description

QNAP QTS是威联通科技（QNAPSystems,Inc.）开发的NAS操作系统，专为网络附加存储设备设计，提供数据管理、备份、多媒体娱乐等功能。QNAP QuTS hero是威联通（QNAP）为其网络存储设备（NAS）开发的一款企业级操作系统，它基于强大的ZFS文件系统构建，专为需要高数据完整性、安全性和高效能的应用场景设计‌。 QNAP QTS和QuTS hero存在操作系统命令注入漏洞，攻击者可利用该漏洞通过网络执行命令。

Severity

高

Patch Name

QNAP QTS和QuTS hero操作系统命令注入漏洞（CNVD-2025-27829）的补丁

Patch Description

Formal description

目前厂商已经发布了QTS 4.5.4.2790 build 20240605及其以后版本和QuTS hero h4.5.4.2790 build 20240606及其以后版本以修复这个安全问题，请及时关注更新： https://www.qnap.com/en/security-advisory/qsa-24-32

Reference

https://nvd.nist.gov/vuln/detail/CVE-2023-34979

Impacted products

Name
['QNAP QTS 4.5.', 'QNAP QuTS hero h4.5.']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2023-34979",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2023-34979"
    }
  },
  "description": "QNAP QTS\u662f\u5a01\u8054\u901a\u79d1\u6280\uff08QNAPSystems,Inc.\uff09\u5f00\u53d1\u7684NAS\u64cd\u4f5c\u7cfb\u7edf\uff0c\u4e13\u4e3a\u7f51\u7edc\u9644\u52a0\u5b58\u50a8\u8bbe\u5907\u8bbe\u8ba1\uff0c\u63d0\u4f9b\u6570\u636e\u7ba1\u7406\u3001\u5907\u4efd\u3001\u591a\u5a92\u4f53\u5a31\u4e50\u7b49\u529f\u80fd\u3002QNAP QuTS hero\u662f\u5a01\u8054\u901a\uff08QNAP\uff09\u4e3a\u5176\u7f51\u7edc\u5b58\u50a8\u8bbe\u5907\uff08NAS\uff09\u5f00\u53d1\u7684\u4e00\u6b3e\u4f01\u4e1a\u7ea7\u64cd\u4f5c\u7cfb\u7edf\uff0c\u5b83\u57fa\u4e8e\u5f3a\u5927\u7684ZFS\u6587\u4ef6\u7cfb\u7edf\u6784\u5efa\uff0c\u4e13\u4e3a\u9700\u8981\u9ad8\u6570\u636e\u5b8c\u6574\u6027\u3001\u5b89\u5168\u6027\u548c\u9ad8\u6548\u80fd\u7684\u5e94\u7528\u573a\u666f\u8bbe\u8ba1\u200c\u3002\n\nQNAP QTS\u548cQuTS hero\u5b58\u5728\u64cd\u4f5c\u7cfb\u7edf\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u7f51\u7edc\u6267\u884c\u547d\u4ee4\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86QTS 4.5.4.2790 build 20240605\u53ca\u5176\u4ee5\u540e\u7248\u672c\u548cQuTS hero h4.5.4.2790 build 20240606\u53ca\u5176\u4ee5\u540e\u7248\u672c\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a \r\nhttps://www.qnap.com/en/security-advisory/qsa-24-32",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-27829",
  "openTime": "2025-11-12",
  "patchDescription": "QNAP QTS\u662f\u5a01\u8054\u901a\u79d1\u6280\uff08QNAPSystems,Inc.\uff09\u5f00\u53d1\u7684NAS\u64cd\u4f5c\u7cfb\u7edf\uff0c\u4e13\u4e3a\u7f51\u7edc\u9644\u52a0\u5b58\u50a8\u8bbe\u5907\u8bbe\u8ba1\uff0c\u63d0\u4f9b\u6570\u636e\u7ba1\u7406\u3001\u5907\u4efd\u3001\u591a\u5a92\u4f53\u5a31\u4e50\u7b49\u529f\u80fd\u3002QNAP QuTS hero\u662f\u5a01\u8054\u901a\uff08QNAP\uff09\u4e3a\u5176\u7f51\u7edc\u5b58\u50a8\u8bbe\u5907\uff08NAS\uff09\u5f00\u53d1\u7684\u4e00\u6b3e\u4f01\u4e1a\u7ea7\u64cd\u4f5c\u7cfb\u7edf\uff0c\u5b83\u57fa\u4e8e\u5f3a\u5927\u7684ZFS\u6587\u4ef6\u7cfb\u7edf\u6784\u5efa\uff0c\u4e13\u4e3a\u9700\u8981\u9ad8\u6570\u636e\u5b8c\u6574\u6027\u3001\u5b89\u5168\u6027\u548c\u9ad8\u6548\u80fd\u7684\u5e94\u7528\u573a\u666f\u8bbe\u8ba1\u200c\u3002\r\n\r\nQNAP QTS\u548cQuTS hero\u5b58\u5728\u64cd\u4f5c\u7cfb\u7edf\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u7f51\u7edc\u6267\u884c\u547d\u4ee4\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "QNAP QTS\u548cQuTS hero\u64cd\u4f5c\u7cfb\u7edf\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\uff08CNVD-2025-27829\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "QNAP QTS 4.5.*",
      "QNAP QuTS hero h4.5.*"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2023-34979",
  "serverity": "\u9ad8",
  "submitTime": "2024-09-11",
  "title": "QNAP QTS\u548cQuTS hero\u64cd\u4f5c\u7cfb\u7edf\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\uff08CNVD-2025-27829\uff09"
}

CERTFR-2024-AVI-0752

Vulnerability from certfr_avis - Published: 2024-09-09 - Updated: 2025-01-21

De multiples vulnérabilités ont été découvertes dans les produits Qnap. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à la confidentialité des données et une injection de code indirecte à distance (XSS).

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Qnap	QuTS hero	QuTS hero versions h4.5.x antérieures à h4.5.4.2790 build 20240606
Qnap	QTS	QTS versions 4.3.4 antérieures à 4.3.4.2814 build 20240618
Qnap	Download Station	Download Station versions 5.8.x antérieures à 5.8.6.283
Qnap	QTS	QTS versions 4.3.3 antérieures à 4.3.3.2784 build 20240619
Qnap	QuMagie	QuMagie versions 2.3.x antérieures à 2.3.1
Qnap	QTS	QTS versions 4.2.6 antérieures à 4.2.6 build 20240618
Qnap	QTS	QTS versions 4.3.6 antérieures à 4.3.6.2805 build 20240619
Qnap	Helpdesk	Helpdesk versions 3.3.x antérieures à 3.3.1
Qnap	Notes Station	Notes Station 3 versions 3.9.x antérieures à 3.9.6
Qnap	QTS	QTS versions 5.1.x antérieures à 5.2.0.2782 build 20240601
Qnap	QuTS hero	QuTS hero versions h4.5.x antérieures à h4.5.4.2626 build 20231225
Qnap	QuTS hero	QuTS hero versions h5.1.x antérieures à h5.2.0.2782 build 20240601
Qnap	Music Station	Music Station versions 5.4.x antérieures à 5.4.0
Qnap	Video Station	Video Station versions 5.8.x antérieures à 5.8.2
Qnap	QTS	QTS versions 4.5.x antérieures à 4.5.4.2790 build 20240605
Qnap	QuLog Center	QuLog Center versions 1.7.x.x antérieures à 1.7.0.827
Qnap	QuLog Center	QuLog Center versions 1.8.x.x antérieures à 1.8.0.872
Qnap	QVR	QVR Smart Client versions 2.4.x.x antérieures à 2.4.0.0570

References

Title

Publication Time

NCSC-2024-0361

Vulnerability from csaf_ncscnl - Published: 2024-09-10 10:56 - Updated: 2024-09-10 10:56

Summary

Kwetsbaarheden verholpen in QNAP QTS en QTS Hero

Notes

The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions: NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein. NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory. This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.

Feiten

QNAP heeft kwetsbaarheden verholpen in QTS en QTS Hero.

Interpretaties

Een kwaadwillende kan de kwetsbaarheden misbruiken om zich verhoogde rechten toe te kennen, toegang te krijgen tot gevoelige gegevens of willekeurige OS commando's uit te voeren. Voor succesvol misbruik moet de kwaadwillende reeds over voorafgaande authenticatie beschikken.

Oplossingen

QNAP heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-122

Heap-based Buffer Overflow

CWE-307

Improper Restriction of Excessive Authentication Attempts

CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')

CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CWE-862

Missing Authorization

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "QNAP heeft kwetsbaarheden verholpen in QTS en QTS Hero.",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om zich verhoogde rechten toe te kennen, toegang te krijgen tot gevoelige gegevens of willekeurige OS commando\u0027s uit te voeren. \n\nVoor succesvol misbruik moet de kwaadwillende reeds over voorafgaande authenticatie beschikken.",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "QNAP heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
        "title": "CWE-120"
      },
      {
        "category": "general",
        "text": "Heap-based Buffer Overflow",
        "title": "CWE-122"
      },
      {
        "category": "general",
        "text": "Improper Restriction of Excessive Authentication Attempts",
        "title": "CWE-307"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
        "title": "CWE-77"
      },
      {
        "category": "general",
        "text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
        "title": "CWE-78"
      },
      {
        "category": "general",
        "text": "Missing Authorization",
        "title": "CWE-862"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference - cveprojectv5; hkcert; nvd",
        "url": "https://www.qnap.com/en/security-advisory/qsa-24-28"
      },
      {
        "category": "external",
        "summary": "Reference - cveprojectv5; hkcert; nvd",
        "url": "https://www.qnap.com/en/security-advisory/qsa-24-32"
      },
      {
        "category": "external",
        "summary": "Reference - cveprojectv5; hkcert; nvd",
        "url": "https://www.qnap.com/en/security-advisory/qsa-24-33"
      }
    ],
    "title": "Kwetsbaarheden verholpen in QNAP QTS en QTS Hero",
    "tracking": {
      "current_release_date": "2024-09-10T10:56:51.207746Z",
      "id": "NCSC-2024-0361",
      "initial_release_date": "2024-09-10T10:56:51.207746Z",
      "revision_history": [
        {
          "date": "2024-09-10T10:56:51.207746Z",
          "number": "0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "qts",
            "product": {
              "name": "qts",
              "product_id": "CSAFPID-1465087",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap_systems_inc.:qts:4.5.x:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "qts",
            "product": {
              "name": "qts",
              "product_id": "CSAFPID-966135",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap_systems_inc.:qts:5.1.x:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "quts_hero",
            "product": {
              "name": "quts_hero",
              "product_id": "CSAFPID-1465088",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap_systems_inc.:quts_hero:h4.5.x:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "quts_hero",
            "product": {
              "name": "quts_hero",
              "product_id": "CSAFPID-966136",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap_systems_inc.:quts_hero:h5.1.x:*:*:*:*:*:*:*"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "qnap_systems_inc."
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "qts",
            "product": {
              "name": "qts",
              "product_id": "CSAFPID-1635857",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap:qts:4.5.4.2790:build_20240605:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "qts",
            "product": {
              "name": "qts",
              "product_id": "CSAFPID-1612039",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap:qts:5.1.3.2578:build_20231110:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "qts",
            "product": {
              "name": "qts",
              "product_id": "CSAFPID-1612040",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap:qts:5.1.4.2596:build_20231128:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "qts",
            "product": {
              "name": "qts",
              "product_id": "CSAFPID-1636074",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap:qts:5.1.6.2722:build_20240402:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "qts",
            "product": {
              "name": "qts",
              "product_id": "CSAFPID-1636075",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap:qts:5.1.7.2770:build_20240520:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "quts_hero",
            "product": {
              "name": "quts_hero",
              "product_id": "CSAFPID-1635858",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap:quts_hero:4.5.4.2790:build_20240605:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "quts_hero",
            "product": {
              "name": "quts_hero",
              "product_id": "CSAFPID-1612041",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap:quts_hero:5.1.3.2578:build_20231110:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "quts_hero",
            "product": {
              "name": "quts_hero",
              "product_id": "CSAFPID-1612042",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap:quts_hero:5.1.4.2596:build_20231128:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "quts_hero",
            "product": {
              "name": "quts_hero",
              "product_id": "CSAFPID-1636073",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap:quts_hero:5.1.6.2722:build_20240402:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "quts_hero",
            "product": {
              "name": "quts_hero",
              "product_id": "CSAFPID-1636072",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:qnap:quts_hero:5.1.7.2770:build_20240520:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "qts",
            "product": {
              "name": "qts",
              "product_id": "CSAFPID-95820",
              "product_identification_helper": {
                "cpe": "cpe:2.3:o:qnap:qts:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "quts_hero",
            "product": {
              "name": "quts_hero",
              "product_id": "CSAFPID-446814",
              "product_identification_helper": {
                "cpe": "cpe:2.3:o:qnap:quts_hero:*:*:*:*:*:*:*:*"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "qnap"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-34974",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
          "title": "CWE-78"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1465087",
          "CSAFPID-1465088"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-34974",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-34974.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1465087",
            "CSAFPID-1465088"
          ]
        }
      ],
      "title": "CVE-2023-34974"
    },
    {
      "cve": "CVE-2023-34979",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
          "title": "CWE-78"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1465087",
          "CSAFPID-1465088"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-34979",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-34979.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1465087",
            "CSAFPID-1465088"
          ]
        }
      ],
      "title": "CVE-2023-34979"
    },
    {
      "cve": "CVE-2023-39298",
      "cwe": {
        "id": "CWE-862",
        "name": "Missing Authorization"
      },
      "notes": [
        {
          "category": "other",
          "text": "Missing Authorization",
          "title": "CWE-862"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-966135",
          "CSAFPID-966136"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-39298",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-39298.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-966135",
            "CSAFPID-966136"
          ]
        }
      ],
      "title": "CVE-2023-39298"
    },
    {
      "cve": "CVE-2024-21906",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
          "title": "CWE-78"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-966135",
          "CSAFPID-966136"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-21906",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-21906.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-966135",
            "CSAFPID-966136"
          ]
        }
      ],
      "title": "CVE-2024-21906"
    },
    {
      "cve": "CVE-2024-32763",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
          "title": "CWE-120"
        },
        {
          "category": "other",
          "text": "Heap-based Buffer Overflow",
          "title": "CWE-122"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-966135",
          "CSAFPID-966136"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-32763",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-32763.json"
        }
      ],
      "title": "CVE-2024-32763"
    },
    {
      "cve": "CVE-2024-32771",
      "cwe": {
        "id": "CWE-307",
        "name": "Improper Restriction of Excessive Authentication Attempts"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Restriction of Excessive Authentication Attempts",
          "title": "CWE-307"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-966135",
          "CSAFPID-966136",
          "CSAFPID-446814",
          "CSAFPID-95820"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-32771",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-32771.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.6,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-966135",
            "CSAFPID-966136",
            "CSAFPID-446814",
            "CSAFPID-95820"
          ]
        }
      ],
      "title": "CVE-2024-32771"
    },
    {
      "cve": "CVE-2024-38641",
      "cwe": {
        "id": "CWE-77",
        "name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
          "title": "CWE-77"
        },
        {
          "category": "other",
          "text": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
          "title": "CWE-78"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-966135",
          "CSAFPID-966136"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38641",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38641.json"
        }
      ],
      "title": "CVE-2024-38641"
    }
  ]
}

WID-SEC-W-2024-2077

Vulnerability from csaf_certbund - Published: 2024-09-08 22:00 - Updated: 2024-09-08 22:00

Summary

QNAP NAS QTS and QuTS hero: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

QNAP ist ein Hersteller von NAS (Network Attached Storage) Lösungen.

Angriff

Ein Angreifer kann mehrere Schwachstellen in QNAP NAS ausnutzen, um beliebigen Programmcode auszuführen, Sicherheitsmaßnahmen zu umgehen und erweiterte Rechte zu erlangen.

Betroffene Betriebssysteme

- Appliance - Sonstiges

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "QNAP ist ein Hersteller von NAS (Network Attached Storage) L\u00f6sungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in QNAP NAS ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen und erweiterte Rechte zu erlangen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Appliance\n- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-2077 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-2077.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-2077 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-2077"
      },
      {
        "category": "external",
        "summary": "QNAP Security Advisory vom 2024-09-08",
        "url": "https://www.qnap.com/de-de/security-advisory/QSA-24-26"
      },
      {
        "category": "external",
        "summary": "QNAP Security Advisory vom 2024-09-08",
        "url": "https://www.qnap.com/de-de/security-advisory/QSA-24-28"
      },
      {
        "category": "external",
        "summary": "QNAP Security Advisory vom 2024-09-08",
        "url": "https://www.qnap.com/de-de/security-advisory/QSA-24-32"
      },
      {
        "category": "external",
        "summary": "QNAP Security Advisory vom 2024-09-08",
        "url": "https://www.qnap.com/de-de/security-advisory/QSA-24-33"
      },
      {
        "category": "external",
        "summary": "Github Security Advisory",
        "url": "https://github.com/advisories/GHSA-5mrr-fx45-wmm7"
      }
    ],
    "source_lang": "en-US",
    "title": "QNAP NAS QTS and QuTS hero: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-09-08T22:00:00.000+00:00",
      "generator": {
        "date": "2024-09-09T12:07:45.314+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.6"
        }
      },
      "id": "WID-SEC-W-2024-2077",
      "initial_release_date": "2024-09-08T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-09-08T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "QTS \u003c4.3.6.2805",
                "product": {
                  "name": "QNAP NAS QTS \u003c4.3.6.2805",
                  "product_id": "T037334"
                }
              },
              {
                "category": "product_version",
                "name": "QTS 4.3.6.2805",
                "product": {
                  "name": "QNAP NAS QTS 4.3.6.2805",
                  "product_id": "T037334-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:qnap:nas:qts__4.3.6.2805"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "QTS \u003c4.3.4.2814",
                "product": {
                  "name": "QNAP NAS QTS \u003c4.3.4.2814",
                  "product_id": "T037335"
                }
              },
              {
                "category": "product_version",
                "name": "QTS 4.3.4.2814",
                "product": {
                  "name": "QNAP NAS QTS 4.3.4.2814",
                  "product_id": "T037335-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:qnap:nas:qts__4.3.4.2814"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "QTS \u003c4.3.3.2784",
                "product": {
                  "name": "QNAP NAS QTS \u003c4.3.3.2784",
                  "product_id": "T037336"
                }
              },
              {
                "category": "product_version",
                "name": "QTS 4.3.3.2784",
                "product": {
                  "name": "QNAP NAS QTS 4.3.3.2784",
                  "product_id": "T037336-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:qnap:nas:qts__4.3.3.2784"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "QTS \u003c4.2.6",
                "product": {
                  "name": "QNAP NAS QTS \u003c4.2.6",
                  "product_id": "T037337"
                }
              },
              {
                "category": "product_version",
                "name": "QTS 4.2.6",
                "product": {
                  "name": "QNAP NAS QTS 4.2.6",
                  "product_id": "T037337-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:qnap:nas:qts__4.2.6"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "QTS \u003c4.5.4.2790",
                "product": {
                  "name": "QNAP NAS QTS \u003c4.5.4.2790",
                  "product_id": "T037338"
                }
              },
              {
                "category": "product_version",
                "name": "QTS 4.5.4.2790",
                "product": {
                  "name": "QNAP NAS QTS 4.5.4.2790",
                  "product_id": "T037338-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:qnap:nas:qts__4.5.4.2790"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "QuTS hero \u003ch4.5.4.2790",
                "product": {
                  "name": "QNAP NAS QuTS hero \u003ch4.5.4.2790",
                  "product_id": "T037339"
                }
              },
              {
                "category": "product_version",
                "name": "QuTS hero h4.5.4.2790",
                "product": {
                  "name": "QNAP NAS QuTS hero h4.5.4.2790",
                  "product_id": "T037339-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:qnap:nas:quts_hero__h4.5.4.2790"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "QuTS hero \u003ch5.2.0.2782",
                "product": {
                  "name": "QNAP NAS QuTS hero \u003ch5.2.0.2782",
                  "product_id": "T037340"
                }
              },
              {
                "category": "product_version",
                "name": "QuTS hero h5.2.0.2782",
                "product": {
                  "name": "QNAP NAS QuTS hero h5.2.0.2782",
                  "product_id": "T037340-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:qnap:nas:quts_hero__h5.2.0.2782"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "QTS \u003c5.2.0.2782",
                "product": {
                  "name": "QNAP NAS QTS \u003c5.2.0.2782",
                  "product_id": "T037341"
                }
              },
              {
                "category": "product_version",
                "name": "QTS 5.2.0.2782",
                "product": {
                  "name": "QNAP NAS QTS 5.2.0.2782",
                  "product_id": "T037341-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:qnap:nas:qts__5.2.0.2782"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "QTS \u003c5.1.8.2823",
                "product": {
                  "name": "QNAP NAS QTS \u003c5.1.8.2823",
                  "product_id": "T037342"
                }
              },
              {
                "category": "product_version",
                "name": "QTS 5.1.8.2823",
                "product": {
                  "name": "QNAP NAS QTS 5.1.8.2823",
                  "product_id": "T037342-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:qnap:nas:qts__5.1.8.2823"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "QuTS hero \u003ch5.1.8.2823",
                "product": {
                  "name": "QNAP NAS QuTS hero \u003ch5.1.8.2823",
                  "product_id": "T037343"
                }
              },
              {
                "category": "product_version",
                "name": "QuTS hero h5.1.8.2823",
                "product": {
                  "name": "QNAP NAS QuTS hero h5.1.8.2823",
                  "product_id": "T037343-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:qnap:nas:quts_hero__h5.1.8.2823"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "NAS"
          }
        ],
        "category": "vendor",
        "name": "QNAP"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-34974",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in QNAP NAS QTS und QuTS hero. Diese Fehler sind auf eine OS-Befehlsinjektionsschwachstelle zur\u00fcckzuf\u00fchren. Ein entfernter, authentisierter Angreifer mit Benutzer- oder Administratorrechten kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Eine der Schwachstellen erfordert Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T037338",
          "T037339"
        ]
      },
      "release_date": "2024-09-08T22:00:00.000+00:00",
      "title": "CVE-2023-34974"
    },
    {
      "cve": "CVE-2023-34979",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in QNAP NAS QTS und QuTS hero. Diese Fehler sind auf eine OS-Befehlsinjektionsschwachstelle zur\u00fcckzuf\u00fchren. Ein entfernter, authentisierter Angreifer mit Benutzer- oder Administratorrechten kann diese Schwachstellen zur Ausf\u00fchrung von beliebigem Code ausnutzen. Eine der Schwachstellen erfordert Benutzerinteraktion, um erfolgreich ausgenutzt zu werden."
        }
      ],
      "product_status": {
        "known_affected": [
          "T037338",
          "T037339"
        ]
      },
      "release_date": "2024-09-08T22:00:00.000+00:00",
      "title": "CVE-2023-34979"
    },
    {
      "cve": "CVE-2023-39298",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in QNAP NAS QTS und QuTS hero aufgrund einer fehlenden Autorisierung. Ein lokaler Angreifer mit Benutzerzugriff kann diese Schwachstelle ausnutzen, um die Autorisierung zu umgehen und auf Daten zuzugreifen oder Aktionen ohne die entsprechenden Berechtigungen durchzuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T037340",
          "T037341"
        ]
      },
      "release_date": "2024-09-08T22:00:00.000+00:00",
      "title": "CVE-2023-39298"
    },
    {
      "cve": "CVE-2023-39300",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in QNAP NAS QTS. Dieser Fehler besteht aufgrund einer unzureichenden Eingabevalidierung, was zu einer OS-Befehlsinjektionsschwachstelle f\u00fchrt. Ein entfernter authentifizierter Angreifer mit administrativen Rechten kann diese Schwachstelle ausnutzen, um beliebigen Code auf dem Betriebssystem auszuf\u00fchren."
        }
      ],
      "product_status": {
        "known_affected": [
          "T037334",
          "T037335",
          "T037336",
          "T037337"
        ]
      },
      "release_date": "2024-09-08T22:00:00.000+00:00",
      "title": "CVE-2023-39300"
    },
    {
      "cve": "CVE-2024-21906",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in QNAP NAS QTS und QuTS hero. Dieser Fehler besteht aufgrund einer OS-Befehlsinjektionsschwachstelle. Ein entfernter Angreifer mit administrativen Rechten kann diese Schwachstelle zur Ausf\u00fchrung von beliebigem Code ausnutzen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T037342",
          "T037343"
        ]
      },
      "release_date": "2024-09-08T22:00:00.000+00:00",
      "title": "CVE-2024-21906"
    },
    {
      "cve": "CVE-2024-32763",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in QNAP NAS QTS und QuTS hero. Diese Sicherheitsl\u00fccke besteht aufgrund einer unsachgem\u00e4\u00dfen \u00dcberpr\u00fcfung der Eingabegr\u00f6\u00dfe w\u00e4hrend Buffer-Copy-Operationen, was zu einem \u201ebuffer overflow\u201c f\u00fchrt. Ein entfernter, authentisierter Angreifer mit Benutzerrechten kann diese Schwachstelle zur Ausf\u00fchrung von beliebigem Code ausnutzen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T037342",
          "T037343"
        ]
      },
      "release_date": "2024-09-08T22:00:00.000+00:00",
      "title": "CVE-2024-32763"
    },
    {
      "cve": "CVE-2024-32771",
      "notes": [
        {
          "category": "description",
          "text": "Es gibt eine Schwachstelle in QNAP NAS QTS und QuTS. Diese Sicherheitsl\u00fccke besteht aufgrund einer unsachgem\u00e4\u00dfen Beschr\u00e4nkung \u00fcberm\u00e4\u00dfiger Authentifizierungsversuche, die eine unbegrenzte Anzahl von Anmeldeversuchen mit Brute Force erm\u00f6glicht. Ein Angreifer aus einem benachbarten Netzwerk mit administrativen Rechten kann diese Schwachstelle ausnutzen, um die Authentifizierung zu umgehen und erweiterte Rechte zu erlangen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T037340",
          "T037341"
        ]
      },
      "release_date": "2024-09-08T22:00:00.000+00:00",
      "title": "CVE-2024-32771"
    },
    {
      "cve": "CVE-2024-38641",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in QNAP NAS QTS und QuTS hero. Dieser Fehler besteht aufgrund einer OS-Befehlsinjektionsschwachstelle. Ein lokaler Angreifer mit Benutzerrechten kann diese Schwachstelle zur Ausf\u00fchrung von beliebigem Code ausnutzen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T037342",
          "T037343"
        ]
      },
      "release_date": "2024-09-08T22:00:00.000+00:00",
      "title": "CVE-2024-38641"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-34979 (GCVE-0-2023-34979)

GHSA-GXM8-54CQ-9H89

GSD-2023-34979

FKIE_CVE-2023-34979

CNVD-2025-27829

CERTFR-2024-AVI-0752

Solutions

NCSC-2024-0361

WID-SEC-W-2024-2077

Tags

Sightings

Nomenclature