CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-14747

NULL Pointer Dereference vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions could allow remote attackers to crash the NAS media server.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.3%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://www.qnap.com/zh-tw/security-advisory/nas-201811-22
https://www.qnap.com/zh-tw/security-advisory/nas-201811-22

Products affected by CVE-2018-14747

Qnap » Qts » Version: 4.2.6

cpe:2.3:o:qnap:qts:4.2.6
Qnap » Qts » Version: 4.3.3

cpe:2.3:o:qnap:qts:4.3.3
Qnap » Qts » Version: 4.3.4

cpe:2.3:o:qnap:qts:4.3.4
Qnap » Qts » Version: 4.3.5

cpe:2.3:o:qnap:qts:4.3.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-14747

Products

Pricing

Contact Us