An incorrect authorization vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to bypass intended access restrictions via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.6.2722 build 20240402 and later QuTS hero h5.1.6.2734 build 20240414 and later
2024-04-26T15:15:47.460
2024-11-21T08:36:54.477
Modified
CVSSv3.1: 7.4 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | qnap | qts | 5.1.0.2348 | Yes |
| Operating System | qnap | qts | 5.1.0.2399 | Yes |
| Operating System | qnap | qts | 5.1.0.2418 | Yes |
| Operating System | qnap | qts | 5.1.0.2444 | Yes |
| Operating System | qnap | qts | 5.1.0.2466 | Yes |
| Operating System | qnap | qts | 5.1.1.2491 | Yes |
| Operating System | qnap | qts | 5.1.2.2533 | Yes |
| Operating System | qnap | qts | 5.1.3.2578 | Yes |
| Operating System | qnap | qts | 5.1.4.2596 | Yes |
| Operating System | qnap | qts | 5.1.5.2645 | Yes |
| Operating System | qnap | qts | 5.1.5.2679 | Yes |
| Operating System | qnap | quts_hero | h5.1.0.2409 | Yes |
| Operating System | qnap | quts_hero | h5.1.0.2424 | Yes |
| Operating System | qnap | quts_hero | h5.1.0.2453 | Yes |
| Operating System | qnap | quts_hero | h5.1.0.2466 | Yes |
| Operating System | qnap | quts_hero | h5.1.1.2488 | Yes |
| Operating System | qnap | quts_hero | h5.1.2.2534 | Yes |
| Operating System | qnap | quts_hero | h5.1.3.2578 | Yes |
| Operating System | qnap | quts_hero | h5.1.4.2596 | Yes |
| Operating System | qnap | quts_hero | h5.1.5.2647 | Yes |
| Operating System | qnap | quts_hero | h5.1.5.2680 | Yes |