Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-41274


A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to launch a denial-of-service (DoS) attack via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.2.2533 build 20230926 and later QuTS hero h5.1.2.2534 build 20230927 and later QuTScloud c5.1.5.2651 and later


Published

2024-02-02T16:15:47.730

Last Modified

2024-11-21T08:20:57.880

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-476

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System qnap qts 5.1.0.2348 Yes
Operating System qnap qts 5.1.0.2399 Yes
Operating System qnap qts 5.1.0.2418 Yes
Operating System qnap qts 5.1.0.2444 Yes
Operating System qnap qts 5.1.0.2466 Yes
Operating System qnap qts 5.1.1.2491 Yes
Operating System qnap qts 5.1.2.2533 Yes
Operating System qnap quts_hero h5.1.0.2409 Yes
Operating System qnap quts_hero h5.1.0.2424 Yes
Operating System qnap quts_hero h5.1.0.2453 Yes
Operating System qnap quts_hero h5.1.0.2466 Yes
Operating System qnap quts_hero h5.1.1.2488 Yes
Operating System qnap quts_hero h5.1.2.2534 Yes
Operating System qnap qutscloud c5.1.0.2498 Yes

References