cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-53691,https://securityvulnerability.io/vulnerability/CVE-2024-53691,QTS Operating System Vulnerability Fix,"A link following vulnerability has been identified in several QNAP operating systems, potentially allowing remote attackers with user access to traverse the file system and reach unauthorized locations. This poses a significant risk as it can lead to exposure of sensitive data and unauthorized actions within the system. QNAP has addressed this issue in the latest builds of QTS and QuTS hero, ensuring stronger security for users.",QNAP,"Qts,Quts Hero",8.7,HIGH,0.0004299999854993075,false,,true,false,true,2025-01-13T19:07:25.000Z,true,false,false,,2024-12-06T17:15:00.000Z,764
CVE-2024-50404,https://securityvulnerability.io/vulnerability/CVE-2024-50404,Link Following Vulnerability in Qsync Central by QNAP,"A link following vulnerability has been identified in Qsync Central, which may allow remote attackers who have gained user access to exploit the system. This could lead to unauthorized file system traversal, enabling access to unintended directories and sensitive information. Users are encouraged to upgrade to version 4.4.0.16_20240819 or later to mitigate this risk.",QNAP,Qsync Central,,,0.0004299999854993075,false,,false,false,true,2025-01-13T18:47:03.000Z,true,false,false,,2024-12-06T17:15:00.000Z,0
CVE-2024-27130,https://securityvulnerability.io/vulnerability/CVE-2024-27130,Buffer Copy Vulnerability Affects QNAP Operating System Versions,"A vulnerability has been identified across multiple versions of the QNAP operating system, characterized by a buffer copy process that does not adequately verify the size of incoming data. This oversight can be exploited by attackers, providing them the ability to execute arbitrary code through network access. It is crucial for users to update to the specified patched versions to mitigate risks associated with this vulnerability.",QNAP,"Qts,Quts Hero",8.8,HIGH,0.00046999999904073775,false,,true,false,true,2024-05-17T11:42:12.000Z,true,true,false,,2024-05-21T16:08:46.881Z,6467
CVE-2024-32766,https://securityvulnerability.io/vulnerability/CVE-2024-32766,QNAP QTS Operating System Vulnerability Affects Multiple Versions,"A critical OS command injection vulnerability has been reported in multiple versions of the QNAP QTS operating system, allowing users to execute commands via a network. The company has released patches for the affected versions, urging users to update their devices to the latest versions to mitigate potential risks. The exploitation of this vulnerability could lead to dire consequences such as data theft, malware installation, or even a complete takeover of the NAS device, making it a prime target for cybercriminals. Additionally, compromised NAS devices serve as launching pads for broader attacks within the network, posing significant risks to data security and making timely patching and security vigilance imperative.",QNAP,,,,0.000699999975040555,false,,true,false,true,2024-04-29T09:13:07.000Z,,false,false,,2024-04-26T15:15:00.000Z,0
CVE-2024-21899,https://securityvulnerability.io/vulnerability/CVE-2024-21899,QNAP Fixes Improper Authentication Vulnerability Affecting Multiple Versions of QTS,"The articles discuss a critical authentication bypass vulnerability (CVE-2024-21899) affecting multiple versions of QNAP operating systems. This vulnerability allows unauthorized remote access to the NAS device, posing a severe security risk. The vulnerability has been addressed by QNAP with patches available for affected versions. Other vulnerabilities impacting QNAP operating systems are also highlighted, emphasizing the need for immediate updates to mitigate potential security risks. The exploitation of these vulnerabilities could lead to unauthorized access, data compromise, and further attacks, making it crucial for organizations and individuals using QNAP products to prioritize security updates.",QNAP,"Qts,Quts Hero,Qutscloud",9.8,CRITICAL,0.0017999999690800905,false,,true,false,true,2024-03-12T23:20:39.000Z,true,false,false,,2024-03-08T16:17:25.243Z,0