Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2023-34973

An insufficient entropy vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows remote users to predict secret via unspecified vectors.

We have already fixed the vulnerability in the following versions: QTS 5.0.1.2425 build 20230609 and later QTS 5.1.0.2444 build 20230629 and later QuTS hero h5.1.0.2424 build 20230609 and later

  • Published: Aug 24, 2023
  • Updated: Sep 1, 2023
  • CVE: CVE-2023-34973
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.3
  • AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWEs:

Software From Fixed in
qnap / quts_hero h5.1.0 h5.1.0.2424
qnap / qts 5.1.0 5.1.0.2444
qnap / qts 5.0.1 5.0.1.2425