Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2023-32968

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.

We have already fixed the vulnerability in the following versions: QTS 5.0.1.2514 build 20230906 and later QTS 5.1.2.2533 build 20230926 and later QuTS hero h5.0.1.2515 build 20230907 and later QuTS hero h5.1.2.2534 build 20230927 and later

  • Published: Dec 8, 2023
  • Updated: Dec 14, 2023
  • CVE: CVE-2023-32968
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.2
  • AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWEs:

Software From Fixed in
qnap / qts 5.1.0.2348-build_20230325 5.1.0.2348-build_20230325.x
qnap / qts 5.1.0.2418-build_20230603 5.1.0.2418-build_20230603.x
qnap / qts 5.1.0.2399-build_20230515 5.1.0.2399-build_20230515.x
qnap / qts 5.1.0.2466-build_20230721 5.1.0.2466-build_20230721.x
qnap / qts 5.1.1.2491-build_20230815 5.1.1.2491-build_20230815.x
qnap / qts 5.1.0.2444-build_20230629 5.1.0.2444-build_20230629.x
qnap / qts 5.0.1.2346-build_20230322 5.0.1.2346-build_20230322.x
qnap / qts 5.0.1.2277-build_20230112 5.0.1.2277-build_20230112.x
qnap / qts 5.0.1.2248-build_20221215 5.0.1.2248-build_20221215.x
qnap / qts 5.0.1.2234-build_20221201 5.0.1.2234-build_20221201.x
qnap / qts 5.0.1.2194-build_20221022 5.0.1.2194-build_20221022.x
qnap / qts 5.0.1.2173-build_20221001 5.0.1.2173-build_20221001.x
qnap / qts 5.0.1.2145-build_20220903 5.0.1.2145-build_20220903.x
qnap / qts 5.0.1.2137-build_20220826 5.0.1.2137-build_20220826.x
qnap / qts 5.0.1.2131-build_20220820 5.0.1.2131-build_20220820.x
qnap / qts 5.0.1.2079-build_20220629 5.0.1.2079-build_20220629.x
qnap / qts 5.0.1.2034-build_20220515 5.0.1.2034-build_20220515.x
qnap / qts 5.0.1.2376-build_20230421 5.0.1.2376-build_20230421.x
qnap / qts 5.0.1.2425-build_20230609 5.0.1.2425-build_20230609.x
qnap / quts_hero h5.1.0.2409-build_20230525 h5.1.0.2409-build_20230525.x
qnap / quts_hero h5.1.1.2488-build_20230812 h5.1.1.2488-build_20230812.x
qnap / quts_hero h5.1.0.2466-build_20230721 h5.1.0.2466-build_20230721.x
qnap / quts_hero h5.1.0.2453-build_20230708 h5.1.0.2453-build_20230708.x
qnap / quts_hero h5.1.0.2424-build_20230609 h5.1.0.2424-build_20230609.x
qnap / quts_hero h5.0.1.2348-build_20230324 h5.0.1.2348-build_20230324.x
qnap / quts_hero h5.0.1.2277-build_20230112 h5.0.1.2277-build_20230112.x
qnap / quts_hero h5.0.1.2269-build_20230104 h5.0.1.2269-build_20230104.x
qnap / quts_hero h5.0.1.2248-build_20221215 h5.0.1.2248-build_20221215.x
qnap / quts_hero h5.0.1.2192-build_20221020 h5.0.1.2192-build_20221020.x
qnap / quts_hero h5.0.1.2045-build_20220526 h5.0.1.2045-build_20220526.x
qnap / quts_hero h5.0.1.2376-build_20230421 h5.0.1.2376-build_20230421.x