CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-36194

An XSS vulnerability has been reported to affect QNAP NAS running QTS and QuTS hero. If exploited, this vulnerability allows attackers to inject malicious code. This issue affects: QNAP Systems Inc. QTS versions prior to 4.5.2.1566 Build 20210202. QNAP Systems Inc. QuTS hero versions prior to h4.5.2.1638 build 20210414. This issue does not affect: QNAP Systems Inc. QTS 4.5.3.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.6%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

Products affected by CVE-2020-36194

Qnap » Qts » Version: N/A

cpe:2.3:o:qnap:qts:-
Qnap » Qts » Version: 4.0

cpe:2.3:o:qnap:qts:4.0
Qnap » Qts » Version: 4.0.3

cpe:2.3:o:qnap:qts:4.0.3
Qnap » Qts » Version: 4.1.0

cpe:2.3:o:qnap:qts:4.1.0
Qnap » Qts » Version: 4.1.1

cpe:2.3:o:qnap:qts:4.1.1
Qnap » Qts » Version: 4.1.4

cpe:2.3:o:qnap:qts:4.1.4
Qnap » Qts » Version: 4.2.0

cpe:2.3:o:qnap:qts:4.2.0
Qnap » Qts » Version: 4.2.1

cpe:2.3:o:qnap:qts:4.2.1
Qnap » Qts » Version: 4.2.2

cpe:2.3:o:qnap:qts:4.2.2
Qnap » Qts » Version: 4.2.3

cpe:2.3:o:qnap:qts:4.2.3
Qnap » Qts » Version: 4.2.4

cpe:2.3:o:qnap:qts:4.2.4
Qnap » Qts » Version: 4.2.6

cpe:2.3:o:qnap:qts:4.2.6
Qnap » Qts » Version: 4.3.1.0013

cpe:2.3:o:qnap:qts:4.3.1.0013
Qnap » Qts » Version: 4.3.1.0023

cpe:2.3:o:qnap:qts:4.3.1.0023
Qnap » Qts » Version: 4.3.2.0050

cpe:2.3:o:qnap:qts:4.3.2.0050
Qnap » Qts » Version: 4.3.2.0060

cpe:2.3:o:qnap:qts:4.3.2.0060
Qnap » Qts » Version: 4.3.2.0144

cpe:2.3:o:qnap:qts:4.3.2.0144
Qnap » Qts » Version: 4.3.3

cpe:2.3:o:qnap:qts:4.3.3
Qnap » Qts » Version: 4.3.3.0095

cpe:2.3:o:qnap:qts:4.3.3.0095
Qnap » Qts » Version: 4.3.3.0096

cpe:2.3:o:qnap:qts:4.3.3.0096
Qnap » Qts » Version: 4.3.3.0136

cpe:2.3:o:qnap:qts:4.3.3.0136
Qnap » Qts » Version: 4.3.3.0154

cpe:2.3:o:qnap:qts:4.3.3.0154
Qnap » Qts » Version: 4.3.3.0174

cpe:2.3:o:qnap:qts:4.3.3.0174
Qnap » Qts » Version: 4.3.3.0188

cpe:2.3:o:qnap:qts:4.3.3.0188
Qnap » Qts » Version: 4.3.3.0210

cpe:2.3:o:qnap:qts:4.3.3.0210
Qnap » Qts » Version: 4.3.3.0229

cpe:2.3:o:qnap:qts:4.3.3.0229
Qnap » Qts » Version: 4.3.3.0238

cpe:2.3:o:qnap:qts:4.3.3.0238
Qnap » Qts » Version: 4.3.3.0262

cpe:2.3:o:qnap:qts:4.3.3.0262
Qnap » Qts » Version: 4.3.3.0299

cpe:2.3:o:qnap:qts:4.3.3.0299
Qnap » Qts » Version: 4.3.3.0351

cpe:2.3:o:qnap:qts:4.3.3.0351
Qnap » Qts » Version: 4.3.3.0353

cpe:2.3:o:qnap:qts:4.3.3.0353
Qnap » Qts » Version: 4.3.3.0361

cpe:2.3:o:qnap:qts:4.3.3.0361
Qnap » Qts » Version: 4.3.3.0369

cpe:2.3:o:qnap:qts:4.3.3.0369
Qnap » Qts » Version: 4.3.3.0378

cpe:2.3:o:qnap:qts:4.3.3.0378
Qnap » Qts » Version: 4.3.3.0396

cpe:2.3:o:qnap:qts:4.3.3.0396
Qnap » Qts » Version: 4.3.3.0404

cpe:2.3:o:qnap:qts:4.3.3.0404
Qnap » Qts » Version: 4.3.3.0416

cpe:2.3:o:qnap:qts:4.3.3.0416
Qnap » Qts » Version: 4.3.3.0418

cpe:2.3:o:qnap:qts:4.3.3.0418
Qnap » Qts » Version: 4.3.3.0448

cpe:2.3:o:qnap:qts:4.3.3.0448
Qnap » Qts » Version: 4.3.3.0514

cpe:2.3:o:qnap:qts:4.3.3.0514
Qnap » Qts » Version: 4.3.3.0546

cpe:2.3:o:qnap:qts:4.3.3.0546
Qnap » Qts » Version: 4.3.3.0570

cpe:2.3:o:qnap:qts:4.3.3.0570
Qnap » Qts » Version: 4.3.3.0868

cpe:2.3:o:qnap:qts:4.3.3.0868
Qnap » Qts » Version: 4.3.3.0998

cpe:2.3:o:qnap:qts:4.3.3.0998
Qnap » Qts » Version: 4.3.3.1051

cpe:2.3:o:qnap:qts:4.3.3.1051
Qnap » Qts » Version: 4.3.3.1098

cpe:2.3:o:qnap:qts:4.3.3.1098
Qnap » Qts » Version: 4.3.3.1161

cpe:2.3:o:qnap:qts:4.3.3.1161
Qnap » Qts » Version: 4.3.3.1252

cpe:2.3:o:qnap:qts:4.3.3.1252
Qnap » Qts » Version: 4.3.3.1315

cpe:2.3:o:qnap:qts:4.3.3.1315
Qnap » Qts » Version: 4.3.3.1386

cpe:2.3:o:qnap:qts:4.3.3.1386
Qnap » Qts » Version: 4.3.3.1432

cpe:2.3:o:qnap:qts:4.3.3.1432
Qnap » Qts » Version: 4.3.3.1624

cpe:2.3:o:qnap:qts:4.3.3.1624
Qnap » Qts » Version: 4.3.3.1677

cpe:2.3:o:qnap:qts:4.3.3.1677
Qnap » Qts » Version: 4.3.3.1693

cpe:2.3:o:qnap:qts:4.3.3.1693
Qnap » Qts » Version: 4.3.3.1799

cpe:2.3:o:qnap:qts:4.3.3.1799
Qnap » Qts » Version: 4.3.3.1864

cpe:2.3:o:qnap:qts:4.3.3.1864
Qnap » Qts » Version: 4.3.3.1945

cpe:2.3:o:qnap:qts:4.3.3.1945
Qnap » Qts » Version: 4.3.3.2057

cpe:2.3:o:qnap:qts:4.3.3.2057
Qnap » Qts » Version: 4.3.3.2211

cpe:2.3:o:qnap:qts:4.3.3.2211
Qnap » Qts » Version: 4.3.3.2420

cpe:2.3:o:qnap:qts:4.3.3.2420
Qnap » Qts » Version: 4.3.3.2644

cpe:2.3:o:qnap:qts:4.3.3.2644
Qnap » Qts » Version: 4.3.3.2784

cpe:2.3:o:qnap:qts:4.3.3.2784
Qnap » Qts » Version: 4.3.3.4132

cpe:2.3:o:qnap:qts:4.3.3.4132
Qnap » Qts » Version: 4.3.4

cpe:2.3:o:qnap:qts:4.3.4
Qnap » Qts » Version: 4.3.4.0358

cpe:2.3:o:qnap:qts:4.3.4.0358
Qnap » Qts » Version: 4.3.4.0370

cpe:2.3:o:qnap:qts:4.3.4.0370
Qnap » Qts » Version: 4.3.4.0372

cpe:2.3:o:qnap:qts:4.3.4.0372
Qnap » Qts » Version: 4.3.4.0374

cpe:2.3:o:qnap:qts:4.3.4.0374
Qnap » Qts » Version: 4.3.4.0387

cpe:2.3:o:qnap:qts:4.3.4.0387
Qnap » Qts » Version: 4.3.4.0411

cpe:2.3:o:qnap:qts:4.3.4.0411
Qnap » Qts » Version: 4.3.4.0416

cpe:2.3:o:qnap:qts:4.3.4.0416
Qnap » Qts » Version: 4.3.4.0427

cpe:2.3:o:qnap:qts:4.3.4.0427
Qnap » Qts » Version: 4.3.4.0434

cpe:2.3:o:qnap:qts:4.3.4.0434
Qnap » Qts » Version: 4.3.4.0435

cpe:2.3:o:qnap:qts:4.3.4.0435
Qnap » Qts » Version: 4.3.4.0451

cpe:2.3:o:qnap:qts:4.3.4.0451
Qnap » Qts » Version: 4.3.4.0483

cpe:2.3:o:qnap:qts:4.3.4.0483
Qnap » Qts » Version: 4.3.4.0486

cpe:2.3:o:qnap:qts:4.3.4.0486
Qnap » Qts » Version: 4.3.4.0506

cpe:2.3:o:qnap:qts:4.3.4.0506
Qnap » Qts » Version: 4.3.4.0516

cpe:2.3:o:qnap:qts:4.3.4.0516
Qnap » Qts » Version: 4.3.4.0526

cpe:2.3:o:qnap:qts:4.3.4.0526
Qnap » Qts » Version: 4.3.4.0551

cpe:2.3:o:qnap:qts:4.3.4.0551
Qnap » Qts » Version: 4.3.4.0557

cpe:2.3:o:qnap:qts:4.3.4.0557
Qnap » Qts » Version: 4.3.4.0561

cpe:2.3:o:qnap:qts:4.3.4.0561
Qnap » Qts » Version: 4.3.4.0569

cpe:2.3:o:qnap:qts:4.3.4.0569
Qnap » Qts » Version: 4.3.4.0593

cpe:2.3:o:qnap:qts:4.3.4.0593
Qnap » Qts » Version: 4.3.4.0597

cpe:2.3:o:qnap:qts:4.3.4.0597
Qnap » Qts » Version: 4.3.4.0604

cpe:2.3:o:qnap:qts:4.3.4.0604
Qnap » Qts » Version: 4.3.4.0899

cpe:2.3:o:qnap:qts:4.3.4.0899
Qnap » Qts » Version: 4.3.4.1029

cpe:2.3:o:qnap:qts:4.3.4.1029
Qnap » Qts » Version: 4.3.4.1082

cpe:2.3:o:qnap:qts:4.3.4.1082
Qnap » Qts » Version: 4.3.4.1190

cpe:2.3:o:qnap:qts:4.3.4.1190
Qnap » Qts » Version: 4.3.4.1282

cpe:2.3:o:qnap:qts:4.3.4.1282
Qnap » Qts » Version: 4.3.4.1368

cpe:2.3:o:qnap:qts:4.3.4.1368
Qnap » Qts » Version: 4.3.4.1417

cpe:2.3:o:qnap:qts:4.3.4.1417
Qnap » Qts » Version: 4.3.4.1463

cpe:2.3:o:qnap:qts:4.3.4.1463
Qnap » Qts » Version: 4.3.4.1632

cpe:2.3:o:qnap:qts:4.3.4.1632
Qnap » Qts » Version: 4.3.4.1652

cpe:2.3:o:qnap:qts:4.3.4.1652
Qnap » Qts » Version: 4.3.4.1976

cpe:2.3:o:qnap:qts:4.3.4.1976
Qnap » Qts » Version: 4.3.4.2107

cpe:2.3:o:qnap:qts:4.3.4.2107
Qnap » Qts » Version: 4.3.4.2242

cpe:2.3:o:qnap:qts:4.3.4.2242
Qnap » Qts » Version: 4.3.4.2451

cpe:2.3:o:qnap:qts:4.3.4.2451
Qnap » Qts » Version: 4.3.4.2675

cpe:2.3:o:qnap:qts:4.3.4.2675
Qnap » Qts » Version: 4.3.4.2814

cpe:2.3:o:qnap:qts:4.3.4.2814
Qnap » Qts » Version: 4.3.5

cpe:2.3:o:qnap:qts:4.3.5
Qnap » Qts » Version: 4.3.6

cpe:2.3:o:qnap:qts:4.3.6
Qnap » Qts » Version: 4.3.6.0895

cpe:2.3:o:qnap:qts:4.3.6.0895
Qnap » Qts » Version: 4.3.6.0907

cpe:2.3:o:qnap:qts:4.3.6.0907
Qnap » Qts » Version: 4.3.6.0923

cpe:2.3:o:qnap:qts:4.3.6.0923
Qnap » Qts » Version: 4.3.6.0944

cpe:2.3:o:qnap:qts:4.3.6.0944
Qnap » Qts » Version: 4.3.6.0959

cpe:2.3:o:qnap:qts:4.3.6.0959
Qnap » Qts » Version: 4.3.6.0979

cpe:2.3:o:qnap:qts:4.3.6.0979
Qnap » Qts » Version: 4.3.6.0993

cpe:2.3:o:qnap:qts:4.3.6.0993
Qnap » Qts » Version: 4.3.6.1013

cpe:2.3:o:qnap:qts:4.3.6.1013
Qnap » Qts » Version: 4.3.6.1033

cpe:2.3:o:qnap:qts:4.3.6.1033
Qnap » Qts » Version: 4.3.6.1070

cpe:2.3:o:qnap:qts:4.3.6.1070
Qnap » Qts » Version: 4.3.6.1154

cpe:2.3:o:qnap:qts:4.3.6.1154
Qnap » Qts » Version: 4.3.6.1218

cpe:2.3:o:qnap:qts:4.3.6.1218
Qnap » Qts » Version: 4.3.6.1263

cpe:2.3:o:qnap:qts:4.3.6.1263
Qnap » Qts » Version: 4.3.6.1286

cpe:2.3:o:qnap:qts:4.3.6.1286
Qnap » Qts » Version: 4.3.6.1333

cpe:2.3:o:qnap:qts:4.3.6.1333
Qnap » Qts » Version: 4.3.6.1411

cpe:2.3:o:qnap:qts:4.3.6.1411
Qnap » Qts » Version: 4.3.6.1446

cpe:2.3:o:qnap:qts:4.3.6.1446
Qnap » Qts » Version: 4.3.6.1620

cpe:2.3:o:qnap:qts:4.3.6.1620
Qnap » Qts » Version: 4.3.6.1663

cpe:2.3:o:qnap:qts:4.3.6.1663
Qnap » Qts » Version: 4.3.6.1711

cpe:2.3:o:qnap:qts:4.3.6.1711
Qnap » Qts » Version: 4.3.6.1750

cpe:2.3:o:qnap:qts:4.3.6.1750
Qnap » Qts » Version: 4.3.6.1831

cpe:2.3:o:qnap:qts:4.3.6.1831
Qnap » Qts » Version: 4.3.6.1907

cpe:2.3:o:qnap:qts:4.3.6.1907
Qnap » Qts » Version: 4.3.6.1965

cpe:2.3:o:qnap:qts:4.3.6.1965
Qnap » Qts » Version: 4.3.6.2050

cpe:2.3:o:qnap:qts:4.3.6.2050
Qnap » Qts » Version: 4.3.6.2232

cpe:2.3:o:qnap:qts:4.3.6.2232
Qnap » Qts » Version: 4.3.6.2441

cpe:2.3:o:qnap:qts:4.3.6.2441
Qnap » Qts » Version: 4.3.6.2665

cpe:2.3:o:qnap:qts:4.3.6.2665
Qnap » Qts » Version: 4.3.6.2805

cpe:2.3:o:qnap:qts:4.3.6.2805
Qnap » Qts » Version: 4.4.0

cpe:2.3:o:qnap:qts:4.4.0
Qnap » Qts » Version: 4.4.0.0883

cpe:2.3:o:qnap:qts:4.4.0.0883
Qnap » Qts » Version: 4.4.0.0931

cpe:2.3:o:qnap:qts:4.4.0.0931
Qnap » Qts » Version: 4.4.0.0979

cpe:2.3:o:qnap:qts:4.4.0.0979
Qnap » Qts » Version: 4.4.1

cpe:2.3:o:qnap:qts:4.4.1
Qnap » Qts » Version: 4.4.1.0948

cpe:2.3:o:qnap:qts:4.4.1.0948
Qnap » Qts » Version: 4.4.1.0949

cpe:2.3:o:qnap:qts:4.4.1.0949
Qnap » Qts » Version: 4.4.1.0978

cpe:2.3:o:qnap:qts:4.4.1.0978
Qnap » Qts » Version: 4.4.1.0998

cpe:2.3:o:qnap:qts:4.4.1.0998
Qnap » Qts » Version: 4.4.1.0999

cpe:2.3:o:qnap:qts:4.4.1.0999
Qnap » Qts » Version: 4.4.1.1031

cpe:2.3:o:qnap:qts:4.4.1.1031
Qnap » Qts » Version: 4.4.1.1033

cpe:2.3:o:qnap:qts:4.4.1.1033
Qnap » Qts » Version: 4.4.1.1064

cpe:2.3:o:qnap:qts:4.4.1.1064
Qnap » Qts » Version: 4.4.1.1081

cpe:2.3:o:qnap:qts:4.4.1.1081
Qnap » Qts » Version: 4.4.1.1086

cpe:2.3:o:qnap:qts:4.4.1.1086
Qnap » Qts » Version: 4.4.1.1101

cpe:2.3:o:qnap:qts:4.4.1.1101
Qnap » Qts » Version: 4.4.1.1117

cpe:2.3:o:qnap:qts:4.4.1.1117
Qnap » Qts » Version: 4.4.1.1146

cpe:2.3:o:qnap:qts:4.4.1.1146
Qnap » Qts » Version: 4.4.1.1201

cpe:2.3:o:qnap:qts:4.4.1.1201
Qnap » Qts » Version: 4.4.1.1216

cpe:2.3:o:qnap:qts:4.4.1.1216
Qnap » Qts » Version: 4.4.1.1261

cpe:2.3:o:qnap:qts:4.4.1.1261
Qnap » Qts » Version: 4.4.2

cpe:2.3:o:qnap:qts:4.4.2
Qnap » Qts » Version: 4.4.2.1231

cpe:2.3:o:qnap:qts:4.4.2.1231
Qnap » Qts » Version: 4.4.2.1270

cpe:2.3:o:qnap:qts:4.4.2.1270
Qnap » Qts » Version: 4.4.3

cpe:2.3:o:qnap:qts:4.4.3
Qnap » Qts » Version: 4.4.3.1354

cpe:2.3:o:qnap:qts:4.4.3.1354
Qnap » Qts » Version: 4.4.3.1381

cpe:2.3:o:qnap:qts:4.4.3.1381
Qnap » Qts » Version: 4.4.3.1400

cpe:2.3:o:qnap:qts:4.4.3.1400
Qnap » Qts » Version: 4.4.3.1421

cpe:2.3:o:qnap:qts:4.4.3.1421
Qnap » Qts » Version: 4.4.3.1439

cpe:2.3:o:qnap:qts:4.4.3.1439
Qnap » Qts » Version: 4.4.3.1444

cpe:2.3:o:qnap:qts:4.4.3.1444
Qnap » Qts » Version: 4.5.1

cpe:2.3:o:qnap:qts:4.5.1
Qnap » Qts » Version: 4.5.1.1456

cpe:2.3:o:qnap:qts:4.5.1.1456
Qnap » Qts » Version: 4.5.1.1461

cpe:2.3:o:qnap:qts:4.5.1.1461
Qnap » Qts » Version: 4.5.1.1465

cpe:2.3:o:qnap:qts:4.5.1.1465
Qnap » Qts » Version: 4.5.1.1480

cpe:2.3:o:qnap:qts:4.5.1.1480
Qnap » Qts » Version: 4.5.1.1495

cpe:2.3:o:qnap:qts:4.5.1.1495
Qnap » Qts » Version: 4.5.1.1540

cpe:2.3:o:qnap:qts:4.5.1.1540
Qnap » Qts » Version: 4.5.2

cpe:2.3:o:qnap:qts:4.5.2
Qnap » Quts Hero » Version: N/A

cpe:2.3:o:qnap:quts_hero:-
Qnap » Quts Hero » Version: 4.5.4.2374

cpe:2.3:o:qnap:quts_hero:4.5.4.2374
Qnap » Quts Hero » Version: 5.0.1.2376

cpe:2.3:o:qnap:quts_hero:5.0.1.2376
Qnap » Quts Hero » Version: h4.5.0

cpe:2.3:o:qnap:quts_hero:h4.5.0
Qnap » Quts Hero » Version: h4.5.0.1279

cpe:2.3:o:qnap:quts_hero:h4.5.0.1279
Qnap » Quts Hero » Version: h4.5.0.1308

cpe:2.3:o:qnap:quts_hero:h4.5.0.1308
Qnap » Quts Hero » Version: h4.5.0.1352

cpe:2.3:o:qnap:quts_hero:h4.5.0.1352
Qnap » Quts Hero » Version: h4.5.0.1409

cpe:2.3:o:qnap:quts_hero:h4.5.0.1409
Qnap » Quts Hero » Version: h4.5.1

cpe:2.3:o:qnap:quts_hero:h4.5.1
Qnap » Quts Hero » Version: h4.5.1.1472

cpe:2.3:o:qnap:quts_hero:h4.5.1.1472
Qnap » Quts Hero » Version: h4.5.1.1491

cpe:2.3:o:qnap:quts_hero:h4.5.1.1491
Qnap » Quts Hero » Version: h4.5.1.1582

cpe:2.3:o:qnap:quts_hero:h4.5.1.1582
Qnap » Quts Hero » Version: h4.5.2

cpe:2.3:o:qnap:quts_hero:h4.5.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-36194

Products

Pricing

Contact Us