Vulnerability Database

308,820

Total vulnerabilities in the database

CVE-2024-53698

A double free vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to modify memory.

We have already fixed the vulnerability in the following versions: QTS 5.2.3.3006 build 20250108 and later QuTS hero h5.2.3.3006 build 20250108 and later

  • Published: Mar 7, 2025
  • Updated: Nov 16, 2025
  • CVE: CVE-2024-53698
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 4.9
  • AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

CWEs:

Software From Fixed in
qnap / qts 5.2.0.2737-build_20240417 5.2.0.2737-build_20240417.x
qnap / qts 5.2.0.2744-build_20240424 5.2.0.2744-build_20240424.x
qnap / qts 5.2.0.2782-build_20240601 5.2.0.2782-build_20240601.x
qnap / qts 5.2.0.2802-build_20240620 5.2.0.2802-build_20240620.x
qnap / qts 5.2.0.2823-build_20240711 5.2.0.2823-build_20240711.x
qnap / qts 5.2.0.2851-build_20240808 5.2.0.2851-build_20240808.x
qnap / qts 5.2.0.2860-build_20240817 5.2.0.2860-build_20240817.x
qnap / qts 5.2.1.2930-build_20241025 5.2.1.2930-build_20241025.x
qnap / qts 5.2.2.2950-build_20241114 5.2.2.2950-build_20241114.x
qnap / quts_hero h5.2.0.2737-build_20240417 h5.2.0.2737-build_20240417.x
qnap / quts_hero h5.2.0.2782-build_20240601 h5.2.0.2782-build_20240601.x
qnap / quts_hero h5.2.0.2789-build_20240607 h5.2.0.2789-build_20240607.x
qnap / quts_hero h5.2.0.2802-build_20240620 h5.2.0.2802-build_20240620.x
qnap / quts_hero h5.2.0.2823-build_20240711 h5.2.0.2823-build_20240711.x
qnap / quts_hero h5.2.0.2851-build_20240808 h5.2.0.2851-build_20240808.x
qnap / quts_hero h5.2.0.2860-build_20240817 h5.2.0.2860-build_20240817.x
qnap / quts_hero h5.2.1.2929-build_20241025 h5.2.1.2929-build_20241025.x
qnap / quts_hero h5.2.1.2940-build_20241105 h5.2.1.2940-build_20241105.x
qnap / quts_hero h5.2.2.2952-build_20241116 h5.2.2.2952-build_20241116.x