CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19941

A vulnerability has been reported to affect QNAP NAS. If exploited, this vulnerability allows an attacker to access sensitive information stored in cleartext inside cookies via certain widely-available tools. QNAP have already fixed this vulnerability in the following versions: QTS 4.5.1.1456 build 20201015 (and later) QuTS hero h4.5.1.1472 build 20201031 (and later) QuTScloud c4.5.2.1379 build 20200730 (and later)

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.0%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2018-19941

Qnap » Qts » Version: N/A

cpe:2.3:o:qnap:qts:-
Qnap » Qts » Version: 4.0

cpe:2.3:o:qnap:qts:4.0
Qnap » Qts » Version: 4.0.3

cpe:2.3:o:qnap:qts:4.0.3
Qnap » Qts » Version: 4.1.0

cpe:2.3:o:qnap:qts:4.1.0
Qnap » Qts » Version: 4.1.1

cpe:2.3:o:qnap:qts:4.1.1
Qnap » Qts » Version: 4.1.4

cpe:2.3:o:qnap:qts:4.1.4
Qnap » Qts » Version: 4.2.0

cpe:2.3:o:qnap:qts:4.2.0
Qnap » Qts » Version: 4.2.1

cpe:2.3:o:qnap:qts:4.2.1
Qnap » Qts » Version: 4.2.2

cpe:2.3:o:qnap:qts:4.2.2
Qnap » Qts » Version: 4.2.3

cpe:2.3:o:qnap:qts:4.2.3
Qnap » Qts » Version: 4.2.4

cpe:2.3:o:qnap:qts:4.2.4
Qnap » Qts » Version: 4.2.6

cpe:2.3:o:qnap:qts:4.2.6
Qnap » Qts » Version: 4.3.1.0013

cpe:2.3:o:qnap:qts:4.3.1.0013
Qnap » Qts » Version: 4.3.1.0023

cpe:2.3:o:qnap:qts:4.3.1.0023
Qnap » Qts » Version: 4.3.2.0050

cpe:2.3:o:qnap:qts:4.3.2.0050
Qnap » Qts » Version: 4.3.2.0060

cpe:2.3:o:qnap:qts:4.3.2.0060
Qnap » Qts » Version: 4.3.2.0144

cpe:2.3:o:qnap:qts:4.3.2.0144
Qnap » Qts » Version: 4.3.3

cpe:2.3:o:qnap:qts:4.3.3
Qnap » Qts » Version: 4.3.3.0095

cpe:2.3:o:qnap:qts:4.3.3.0095
Qnap » Qts » Version: 4.3.3.0096

cpe:2.3:o:qnap:qts:4.3.3.0096
Qnap » Qts » Version: 4.3.3.0136

cpe:2.3:o:qnap:qts:4.3.3.0136
Qnap » Qts » Version: 4.3.3.0154

cpe:2.3:o:qnap:qts:4.3.3.0154
Qnap » Qts » Version: 4.3.3.0174

cpe:2.3:o:qnap:qts:4.3.3.0174
Qnap » Qts » Version: 4.3.3.0188

cpe:2.3:o:qnap:qts:4.3.3.0188
Qnap » Qts » Version: 4.3.3.0210

cpe:2.3:o:qnap:qts:4.3.3.0210
Qnap » Qts » Version: 4.3.3.0229

cpe:2.3:o:qnap:qts:4.3.3.0229
Qnap » Qts » Version: 4.3.3.0238

cpe:2.3:o:qnap:qts:4.3.3.0238
Qnap » Qts » Version: 4.3.3.0262

cpe:2.3:o:qnap:qts:4.3.3.0262
Qnap » Qts » Version: 4.3.3.0299

cpe:2.3:o:qnap:qts:4.3.3.0299
Qnap » Qts » Version: 4.3.3.0351

cpe:2.3:o:qnap:qts:4.3.3.0351
Qnap » Qts » Version: 4.3.3.0353

cpe:2.3:o:qnap:qts:4.3.3.0353
Qnap » Qts » Version: 4.3.3.0361

cpe:2.3:o:qnap:qts:4.3.3.0361
Qnap » Qts » Version: 4.3.3.0369

cpe:2.3:o:qnap:qts:4.3.3.0369
Qnap » Qts » Version: 4.3.3.0378

cpe:2.3:o:qnap:qts:4.3.3.0378
Qnap » Qts » Version: 4.3.3.0396

cpe:2.3:o:qnap:qts:4.3.3.0396
Qnap » Qts » Version: 4.3.3.0404

cpe:2.3:o:qnap:qts:4.3.3.0404
Qnap » Qts » Version: 4.3.3.0416

cpe:2.3:o:qnap:qts:4.3.3.0416
Qnap » Qts » Version: 4.3.3.0418

cpe:2.3:o:qnap:qts:4.3.3.0418
Qnap » Qts » Version: 4.3.3.0448

cpe:2.3:o:qnap:qts:4.3.3.0448
Qnap » Qts » Version: 4.3.3.0514

cpe:2.3:o:qnap:qts:4.3.3.0514
Qnap » Qts » Version: 4.3.3.0546

cpe:2.3:o:qnap:qts:4.3.3.0546
Qnap » Qts » Version: 4.3.3.0570

cpe:2.3:o:qnap:qts:4.3.3.0570
Qnap » Qts » Version: 4.3.3.0868

cpe:2.3:o:qnap:qts:4.3.3.0868
Qnap » Qts » Version: 4.3.3.0998

cpe:2.3:o:qnap:qts:4.3.3.0998
Qnap » Qts » Version: 4.3.3.1051

cpe:2.3:o:qnap:qts:4.3.3.1051
Qnap » Qts » Version: 4.3.3.1098

cpe:2.3:o:qnap:qts:4.3.3.1098
Qnap » Qts » Version: 4.3.3.1161

cpe:2.3:o:qnap:qts:4.3.3.1161
Qnap » Qts » Version: 4.3.3.1252

cpe:2.3:o:qnap:qts:4.3.3.1252
Qnap » Qts » Version: 4.3.3.1315

cpe:2.3:o:qnap:qts:4.3.3.1315
Qnap » Qts » Version: 4.3.3.1386

cpe:2.3:o:qnap:qts:4.3.3.1386
Qnap » Qts » Version: 4.3.3.1432

cpe:2.3:o:qnap:qts:4.3.3.1432
Qnap » Qts » Version: 4.3.3.1624

cpe:2.3:o:qnap:qts:4.3.3.1624
Qnap » Qts » Version: 4.3.3.1677

cpe:2.3:o:qnap:qts:4.3.3.1677
Qnap » Qts » Version: 4.3.3.1693

cpe:2.3:o:qnap:qts:4.3.3.1693
Qnap » Qts » Version: 4.3.3.1799

cpe:2.3:o:qnap:qts:4.3.3.1799
Qnap » Qts » Version: 4.3.3.1864

cpe:2.3:o:qnap:qts:4.3.3.1864
Qnap » Qts » Version: 4.3.3.1945

cpe:2.3:o:qnap:qts:4.3.3.1945
Qnap » Qts » Version: 4.3.3.2057

cpe:2.3:o:qnap:qts:4.3.3.2057
Qnap » Qts » Version: 4.3.3.2211

cpe:2.3:o:qnap:qts:4.3.3.2211
Qnap » Qts » Version: 4.3.3.2420

cpe:2.3:o:qnap:qts:4.3.3.2420
Qnap » Qts » Version: 4.3.3.2644

cpe:2.3:o:qnap:qts:4.3.3.2644
Qnap » Qts » Version: 4.3.3.2784

cpe:2.3:o:qnap:qts:4.3.3.2784
Qnap » Qts » Version: 4.3.3.4132

cpe:2.3:o:qnap:qts:4.3.3.4132
Qnap » Qts » Version: 4.3.4

cpe:2.3:o:qnap:qts:4.3.4
Qnap » Qts » Version: 4.3.4.0358

cpe:2.3:o:qnap:qts:4.3.4.0358
Qnap » Qts » Version: 4.3.4.0370

cpe:2.3:o:qnap:qts:4.3.4.0370
Qnap » Qts » Version: 4.3.4.0372

cpe:2.3:o:qnap:qts:4.3.4.0372
Qnap » Qts » Version: 4.3.4.0374

cpe:2.3:o:qnap:qts:4.3.4.0374
Qnap » Qts » Version: 4.3.4.0387

cpe:2.3:o:qnap:qts:4.3.4.0387
Qnap » Qts » Version: 4.3.4.0411

cpe:2.3:o:qnap:qts:4.3.4.0411
Qnap » Qts » Version: 4.3.4.0416

cpe:2.3:o:qnap:qts:4.3.4.0416
Qnap » Qts » Version: 4.3.4.0427

cpe:2.3:o:qnap:qts:4.3.4.0427
Qnap » Qts » Version: 4.3.4.0434

cpe:2.3:o:qnap:qts:4.3.4.0434
Qnap » Qts » Version: 4.3.4.0435

cpe:2.3:o:qnap:qts:4.3.4.0435
Qnap » Qts » Version: 4.3.4.0451

cpe:2.3:o:qnap:qts:4.3.4.0451
Qnap » Qts » Version: 4.3.4.0483

cpe:2.3:o:qnap:qts:4.3.4.0483
Qnap » Qts » Version: 4.3.4.0486

cpe:2.3:o:qnap:qts:4.3.4.0486
Qnap » Qts » Version: 4.3.4.0506

cpe:2.3:o:qnap:qts:4.3.4.0506
Qnap » Qts » Version: 4.3.4.0516

cpe:2.3:o:qnap:qts:4.3.4.0516
Qnap » Qts » Version: 4.3.4.0526

cpe:2.3:o:qnap:qts:4.3.4.0526
Qnap » Qts » Version: 4.3.4.0551

cpe:2.3:o:qnap:qts:4.3.4.0551
Qnap » Qts » Version: 4.3.4.0557

cpe:2.3:o:qnap:qts:4.3.4.0557
Qnap » Qts » Version: 4.3.4.0561

cpe:2.3:o:qnap:qts:4.3.4.0561
Qnap » Qts » Version: 4.3.4.0569

cpe:2.3:o:qnap:qts:4.3.4.0569
Qnap » Qts » Version: 4.3.4.0593

cpe:2.3:o:qnap:qts:4.3.4.0593
Qnap » Qts » Version: 4.3.4.0597

cpe:2.3:o:qnap:qts:4.3.4.0597
Qnap » Qts » Version: 4.3.4.0604

cpe:2.3:o:qnap:qts:4.3.4.0604
Qnap » Qts » Version: 4.3.4.0899

cpe:2.3:o:qnap:qts:4.3.4.0899
Qnap » Qts » Version: 4.3.4.1029

cpe:2.3:o:qnap:qts:4.3.4.1029
Qnap » Qts » Version: 4.3.4.1082

cpe:2.3:o:qnap:qts:4.3.4.1082
Qnap » Qts » Version: 4.3.4.1190

cpe:2.3:o:qnap:qts:4.3.4.1190
Qnap » Qts » Version: 4.3.4.1282

cpe:2.3:o:qnap:qts:4.3.4.1282
Qnap » Qts » Version: 4.3.4.1368

cpe:2.3:o:qnap:qts:4.3.4.1368
Qnap » Qts » Version: 4.3.4.1417

cpe:2.3:o:qnap:qts:4.3.4.1417
Qnap » Qts » Version: 4.3.4.1463

cpe:2.3:o:qnap:qts:4.3.4.1463
Qnap » Qts » Version: 4.3.4.1632

cpe:2.3:o:qnap:qts:4.3.4.1632
Qnap » Qts » Version: 4.3.4.1652

cpe:2.3:o:qnap:qts:4.3.4.1652
Qnap » Qts » Version: 4.3.4.1976

cpe:2.3:o:qnap:qts:4.3.4.1976
Qnap » Qts » Version: 4.3.4.2107

cpe:2.3:o:qnap:qts:4.3.4.2107
Qnap » Qts » Version: 4.3.4.2242

cpe:2.3:o:qnap:qts:4.3.4.2242
Qnap » Qts » Version: 4.3.4.2451

cpe:2.3:o:qnap:qts:4.3.4.2451
Qnap » Qts » Version: 4.3.4.2675

cpe:2.3:o:qnap:qts:4.3.4.2675
Qnap » Qts » Version: 4.3.4.2814

cpe:2.3:o:qnap:qts:4.3.4.2814
Qnap » Qts » Version: 4.3.5

cpe:2.3:o:qnap:qts:4.3.5
Qnap » Qts » Version: 4.3.6

cpe:2.3:o:qnap:qts:4.3.6
Qnap » Qts » Version: 4.3.6.0895

cpe:2.3:o:qnap:qts:4.3.6.0895
Qnap » Qts » Version: 4.3.6.0907

cpe:2.3:o:qnap:qts:4.3.6.0907
Qnap » Qts » Version: 4.3.6.0923

cpe:2.3:o:qnap:qts:4.3.6.0923
Qnap » Qts » Version: 4.3.6.0944

cpe:2.3:o:qnap:qts:4.3.6.0944
Qnap » Qts » Version: 4.3.6.0959

cpe:2.3:o:qnap:qts:4.3.6.0959
Qnap » Qts » Version: 4.3.6.0979

cpe:2.3:o:qnap:qts:4.3.6.0979
Qnap » Qts » Version: 4.3.6.0993

cpe:2.3:o:qnap:qts:4.3.6.0993
Qnap » Qts » Version: 4.3.6.1013

cpe:2.3:o:qnap:qts:4.3.6.1013
Qnap » Qts » Version: 4.3.6.1033

cpe:2.3:o:qnap:qts:4.3.6.1033
Qnap » Qts » Version: 4.3.6.1070

cpe:2.3:o:qnap:qts:4.3.6.1070
Qnap » Qts » Version: 4.3.6.1154

cpe:2.3:o:qnap:qts:4.3.6.1154
Qnap » Qts » Version: 4.3.6.1218

cpe:2.3:o:qnap:qts:4.3.6.1218
Qnap » Qts » Version: 4.3.6.1263

cpe:2.3:o:qnap:qts:4.3.6.1263
Qnap » Qts » Version: 4.3.6.1286

cpe:2.3:o:qnap:qts:4.3.6.1286
Qnap » Qts » Version: 4.3.6.1333

cpe:2.3:o:qnap:qts:4.3.6.1333
Qnap » Qts » Version: 4.3.6.1411

cpe:2.3:o:qnap:qts:4.3.6.1411
Qnap » Qts » Version: 4.3.6.1446

cpe:2.3:o:qnap:qts:4.3.6.1446
Qnap » Qts » Version: 4.3.6.1620

cpe:2.3:o:qnap:qts:4.3.6.1620
Qnap » Qts » Version: 4.3.6.1663

cpe:2.3:o:qnap:qts:4.3.6.1663
Qnap » Qts » Version: 4.3.6.1711

cpe:2.3:o:qnap:qts:4.3.6.1711
Qnap » Qts » Version: 4.3.6.1750

cpe:2.3:o:qnap:qts:4.3.6.1750
Qnap » Qts » Version: 4.3.6.1831

cpe:2.3:o:qnap:qts:4.3.6.1831
Qnap » Qts » Version: 4.3.6.1907

cpe:2.3:o:qnap:qts:4.3.6.1907
Qnap » Qts » Version: 4.3.6.1965

cpe:2.3:o:qnap:qts:4.3.6.1965
Qnap » Qts » Version: 4.3.6.2050

cpe:2.3:o:qnap:qts:4.3.6.2050
Qnap » Qts » Version: 4.3.6.2232

cpe:2.3:o:qnap:qts:4.3.6.2232
Qnap » Qts » Version: 4.3.6.2441

cpe:2.3:o:qnap:qts:4.3.6.2441
Qnap » Qts » Version: 4.3.6.2665

cpe:2.3:o:qnap:qts:4.3.6.2665
Qnap » Qts » Version: 4.3.6.2805

cpe:2.3:o:qnap:qts:4.3.6.2805
Qnap » Qts » Version: 4.4.0

cpe:2.3:o:qnap:qts:4.4.0
Qnap » Qts » Version: 4.4.0.0883

cpe:2.3:o:qnap:qts:4.4.0.0883
Qnap » Qts » Version: 4.4.0.0931

cpe:2.3:o:qnap:qts:4.4.0.0931
Qnap » Qts » Version: 4.4.0.0979

cpe:2.3:o:qnap:qts:4.4.0.0979
Qnap » Qts » Version: 4.4.1

cpe:2.3:o:qnap:qts:4.4.1
Qnap » Qts » Version: 4.4.1.0948

cpe:2.3:o:qnap:qts:4.4.1.0948
Qnap » Qts » Version: 4.4.1.0949

cpe:2.3:o:qnap:qts:4.4.1.0949
Qnap » Qts » Version: 4.4.1.0978

cpe:2.3:o:qnap:qts:4.4.1.0978
Qnap » Qts » Version: 4.4.1.0998

cpe:2.3:o:qnap:qts:4.4.1.0998
Qnap » Qts » Version: 4.4.1.0999

cpe:2.3:o:qnap:qts:4.4.1.0999
Qnap » Qts » Version: 4.4.1.1031

cpe:2.3:o:qnap:qts:4.4.1.1031
Qnap » Qts » Version: 4.4.1.1033

cpe:2.3:o:qnap:qts:4.4.1.1033
Qnap » Qts » Version: 4.4.1.1064

cpe:2.3:o:qnap:qts:4.4.1.1064
Qnap » Qts » Version: 4.4.1.1081

cpe:2.3:o:qnap:qts:4.4.1.1081
Qnap » Qts » Version: 4.4.1.1086

cpe:2.3:o:qnap:qts:4.4.1.1086
Qnap » Qts » Version: 4.4.1.1101

cpe:2.3:o:qnap:qts:4.4.1.1101
Qnap » Qts » Version: 4.4.1.1117

cpe:2.3:o:qnap:qts:4.4.1.1117
Qnap » Qts » Version: 4.4.1.1146

cpe:2.3:o:qnap:qts:4.4.1.1146
Qnap » Qts » Version: 4.4.1.1201

cpe:2.3:o:qnap:qts:4.4.1.1201
Qnap » Qts » Version: 4.4.1.1216

cpe:2.3:o:qnap:qts:4.4.1.1216
Qnap » Qts » Version: 4.4.1.1261

cpe:2.3:o:qnap:qts:4.4.1.1261
Qnap » Qts » Version: 4.4.2

cpe:2.3:o:qnap:qts:4.4.2
Qnap » Qts » Version: 4.4.2.1231

cpe:2.3:o:qnap:qts:4.4.2.1231
Qnap » Qts » Version: 4.4.2.1270

cpe:2.3:o:qnap:qts:4.4.2.1270
Qnap » Qts » Version: 4.4.3

cpe:2.3:o:qnap:qts:4.4.3
Qnap » Qts » Version: 4.4.3.1354

cpe:2.3:o:qnap:qts:4.4.3.1354
Qnap » Qts » Version: 4.4.3.1381

cpe:2.3:o:qnap:qts:4.4.3.1381
Qnap » Qts » Version: 4.4.3.1400

cpe:2.3:o:qnap:qts:4.4.3.1400
Qnap » Qts » Version: 4.4.3.1421

cpe:2.3:o:qnap:qts:4.4.3.1421
Qnap » Qts » Version: 4.4.3.1439

cpe:2.3:o:qnap:qts:4.4.3.1439
Qnap » Qts » Version: 4.4.3.1444

cpe:2.3:o:qnap:qts:4.4.3.1444
Qnap » Qts » Version: 4.5.1

cpe:2.3:o:qnap:qts:4.5.1
Qnap » Quts Hero » Version: N/A

cpe:2.3:o:qnap:quts_hero:-
Qnap » Quts Hero » Version: 4.5.4.2374

cpe:2.3:o:qnap:quts_hero:4.5.4.2374
Qnap » Quts Hero » Version: 5.0.1.2376

cpe:2.3:o:qnap:quts_hero:5.0.1.2376
Qnap » Quts Hero » Version: h4.5.0

cpe:2.3:o:qnap:quts_hero:h4.5.0
Qnap » Quts Hero » Version: h4.5.0.1279

cpe:2.3:o:qnap:quts_hero:h4.5.0.1279
Qnap » Quts Hero » Version: h4.5.0.1308

cpe:2.3:o:qnap:quts_hero:h4.5.0.1308
Qnap » Quts Hero » Version: h4.5.0.1352

cpe:2.3:o:qnap:quts_hero:h4.5.0.1352
Qnap » Quts Hero » Version: h4.5.0.1409

cpe:2.3:o:qnap:quts_hero:h4.5.0.1409
Qnap » Quts Hero » Version: h4.5.1

cpe:2.3:o:qnap:quts_hero:h4.5.1
Qnap » Qutscloud » Version: N/A

cpe:2.3:o:qnap:qutscloud:-
Qnap » Qutscloud » Version: c4.5.1

cpe:2.3:o:qnap:qutscloud:c4.5.1
Qnap » Qutscloud » Version: c4.5.1.1350

cpe:2.3:o:qnap:qutscloud:c4.5.1.1350

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19941

Products

Pricing

Contact Us