QwikSec

Security Database

CVE

CWE

Training

CVE-2024-32763

Published: Sep 6, 2024

Modified: Sep 6, 2024

PUBLISHED

Description

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute code via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.8.2823 build 20240712 and later QuTS hero h5.1.8.2823 build 20240712 and later

Vendor	Product	Versions
QNAP Systems Inc.	QTS	affected `5.1.x - < 5.1.8.2823 build 20240712`
QNAP Systems Inc.	QuTS hero	affected `h5.1.x - < h5.1.8.2823 build 20240712`

Weaknesses (CWE)

References

https://www.qnap.com/en/security-advisory/qsa-24-33

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.