Vulnerability Database

308,926

Total vulnerabilities in the database

CVE-2018-0721

Buffer Overflow vulnerability in NAS devices. QTS allows attackers to run arbitrary code. This issue affects: QNAP Systems Inc. QTS version 4.2.6 and prior versions on build 20180711; version 4.3.3 and prior versions on build 20180725; version 4.3.4 and prior versions on build 20180710.

Published: Nov 27, 2018
Updated: Nov 9, 2025
CVE: CVE-2018-0721
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.7
AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

Affected Software
References

Software	From	Fixed in
qnap / qts	4.3.3	4.3.3.x
qnap / qts	4.3.4	4.3.4.x
qnap / qts	4.2.6	4.2.6.x

https://www.qnap.com/zh-tw/security-advisory/nas-201809-20

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo