CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-28800

A command injection vulnerability has been reported to affect QNAP NAS running legacy versions of QTS. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. This issue affects: QNAP Systems Inc. QTS versions prior to 4.3.6.1663 Build 20210504; versions prior to 4.3.3.1624 Build 20210416. This issue does not affect: QNAP Systems Inc. QTS 4.5.3. QNAP Systems Inc. QuTS hero h4.5.3. QNAP Systems Inc. QuTScloud c4.5.5.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.011

EPSS Ranking 76.9%

CVSS Severity

CVSS v3 Score 8.1

CVSS v2 Score 7.5

References

Products affected by CVE-2021-28800

Qnap » Qts » Version: N/A

cpe:2.3:o:qnap:qts:-
Qnap » Qts » Version: 4.0

cpe:2.3:o:qnap:qts:4.0
Qnap » Qts » Version: 4.0.3

cpe:2.3:o:qnap:qts:4.0.3
Qnap » Qts » Version: 4.1.0

cpe:2.3:o:qnap:qts:4.1.0
Qnap » Qts » Version: 4.1.1

cpe:2.3:o:qnap:qts:4.1.1
Qnap » Qts » Version: 4.1.4

cpe:2.3:o:qnap:qts:4.1.4
Qnap » Qts » Version: 4.2.0

cpe:2.3:o:qnap:qts:4.2.0
Qnap » Qts » Version: 4.2.1

cpe:2.3:o:qnap:qts:4.2.1
Qnap » Qts » Version: 4.2.2

cpe:2.3:o:qnap:qts:4.2.2
Qnap » Qts » Version: 4.2.3

cpe:2.3:o:qnap:qts:4.2.3
Qnap » Qts » Version: 4.2.4

cpe:2.3:o:qnap:qts:4.2.4
Qnap » Qts » Version: 4.2.6

cpe:2.3:o:qnap:qts:4.2.6
Qnap » Qts » Version: 4.3.1.0013

cpe:2.3:o:qnap:qts:4.3.1.0013
Qnap » Qts » Version: 4.3.1.0023

cpe:2.3:o:qnap:qts:4.3.1.0023
Qnap » Qts » Version: 4.3.2.0050

cpe:2.3:o:qnap:qts:4.3.2.0050
Qnap » Qts » Version: 4.3.2.0060

cpe:2.3:o:qnap:qts:4.3.2.0060
Qnap » Qts » Version: 4.3.2.0144

cpe:2.3:o:qnap:qts:4.3.2.0144
Qnap » Qts » Version: 4.3.3

cpe:2.3:o:qnap:qts:4.3.3
Qnap » Qts » Version: 4.3.3.0095

cpe:2.3:o:qnap:qts:4.3.3.0095
Qnap » Qts » Version: 4.3.3.0096

cpe:2.3:o:qnap:qts:4.3.3.0096
Qnap » Qts » Version: 4.3.3.0136

cpe:2.3:o:qnap:qts:4.3.3.0136
Qnap » Qts » Version: 4.3.3.0154

cpe:2.3:o:qnap:qts:4.3.3.0154
Qnap » Qts » Version: 4.3.3.0174

cpe:2.3:o:qnap:qts:4.3.3.0174
Qnap » Qts » Version: 4.3.3.0188

cpe:2.3:o:qnap:qts:4.3.3.0188
Qnap » Qts » Version: 4.3.3.0210

cpe:2.3:o:qnap:qts:4.3.3.0210
Qnap » Qts » Version: 4.3.3.0229

cpe:2.3:o:qnap:qts:4.3.3.0229
Qnap » Qts » Version: 4.3.3.0238

cpe:2.3:o:qnap:qts:4.3.3.0238
Qnap » Qts » Version: 4.3.3.0262

cpe:2.3:o:qnap:qts:4.3.3.0262
Qnap » Qts » Version: 4.3.3.0299

cpe:2.3:o:qnap:qts:4.3.3.0299
Qnap » Qts » Version: 4.3.3.0351

cpe:2.3:o:qnap:qts:4.3.3.0351
Qnap » Qts » Version: 4.3.3.0353

cpe:2.3:o:qnap:qts:4.3.3.0353
Qnap » Qts » Version: 4.3.3.0361

cpe:2.3:o:qnap:qts:4.3.3.0361
Qnap » Qts » Version: 4.3.3.0369

cpe:2.3:o:qnap:qts:4.3.3.0369
Qnap » Qts » Version: 4.3.3.0378

cpe:2.3:o:qnap:qts:4.3.3.0378
Qnap » Qts » Version: 4.3.3.0396

cpe:2.3:o:qnap:qts:4.3.3.0396
Qnap » Qts » Version: 4.3.3.0404

cpe:2.3:o:qnap:qts:4.3.3.0404
Qnap » Qts » Version: 4.3.3.0416

cpe:2.3:o:qnap:qts:4.3.3.0416
Qnap » Qts » Version: 4.3.3.0418

cpe:2.3:o:qnap:qts:4.3.3.0418
Qnap » Qts » Version: 4.3.3.0448

cpe:2.3:o:qnap:qts:4.3.3.0448
Qnap » Qts » Version: 4.3.3.0514

cpe:2.3:o:qnap:qts:4.3.3.0514
Qnap » Qts » Version: 4.3.3.0546

cpe:2.3:o:qnap:qts:4.3.3.0546
Qnap » Qts » Version: 4.3.3.0570

cpe:2.3:o:qnap:qts:4.3.3.0570
Qnap » Qts » Version: 4.3.3.0868

cpe:2.3:o:qnap:qts:4.3.3.0868
Qnap » Qts » Version: 4.3.3.0998

cpe:2.3:o:qnap:qts:4.3.3.0998
Qnap » Qts » Version: 4.3.3.1051

cpe:2.3:o:qnap:qts:4.3.3.1051
Qnap » Qts » Version: 4.3.3.1098

cpe:2.3:o:qnap:qts:4.3.3.1098
Qnap » Qts » Version: 4.3.3.1161

cpe:2.3:o:qnap:qts:4.3.3.1161
Qnap » Qts » Version: 4.3.3.1252

cpe:2.3:o:qnap:qts:4.3.3.1252
Qnap » Qts » Version: 4.3.3.1315

cpe:2.3:o:qnap:qts:4.3.3.1315
Qnap » Qts » Version: 4.3.3.1386

cpe:2.3:o:qnap:qts:4.3.3.1386
Qnap » Qts » Version: 4.3.3.1432

cpe:2.3:o:qnap:qts:4.3.3.1432
Qnap » Qts » Version: 4.3.4

cpe:2.3:o:qnap:qts:4.3.4
Qnap » Qts » Version: 4.3.4.0358

cpe:2.3:o:qnap:qts:4.3.4.0358
Qnap » Qts » Version: 4.3.4.0370

cpe:2.3:o:qnap:qts:4.3.4.0370
Qnap » Qts » Version: 4.3.4.0372

cpe:2.3:o:qnap:qts:4.3.4.0372
Qnap » Qts » Version: 4.3.4.0374

cpe:2.3:o:qnap:qts:4.3.4.0374
Qnap » Qts » Version: 4.3.4.0387

cpe:2.3:o:qnap:qts:4.3.4.0387
Qnap » Qts » Version: 4.3.4.0411

cpe:2.3:o:qnap:qts:4.3.4.0411
Qnap » Qts » Version: 4.3.4.0416

cpe:2.3:o:qnap:qts:4.3.4.0416
Qnap » Qts » Version: 4.3.4.0427

cpe:2.3:o:qnap:qts:4.3.4.0427
Qnap » Qts » Version: 4.3.4.0434

cpe:2.3:o:qnap:qts:4.3.4.0434
Qnap » Qts » Version: 4.3.4.0435

cpe:2.3:o:qnap:qts:4.3.4.0435
Qnap » Qts » Version: 4.3.4.0451

cpe:2.3:o:qnap:qts:4.3.4.0451
Qnap » Qts » Version: 4.3.4.0483

cpe:2.3:o:qnap:qts:4.3.4.0483
Qnap » Qts » Version: 4.3.4.0486

cpe:2.3:o:qnap:qts:4.3.4.0486
Qnap » Qts » Version: 4.3.4.0506

cpe:2.3:o:qnap:qts:4.3.4.0506
Qnap » Qts » Version: 4.3.4.0516

cpe:2.3:o:qnap:qts:4.3.4.0516
Qnap » Qts » Version: 4.3.4.0526

cpe:2.3:o:qnap:qts:4.3.4.0526
Qnap » Qts » Version: 4.3.4.0551

cpe:2.3:o:qnap:qts:4.3.4.0551
Qnap » Qts » Version: 4.3.4.0557

cpe:2.3:o:qnap:qts:4.3.4.0557
Qnap » Qts » Version: 4.3.4.0561

cpe:2.3:o:qnap:qts:4.3.4.0561
Qnap » Qts » Version: 4.3.4.0569

cpe:2.3:o:qnap:qts:4.3.4.0569
Qnap » Qts » Version: 4.3.4.0593

cpe:2.3:o:qnap:qts:4.3.4.0593
Qnap » Qts » Version: 4.3.4.0597

cpe:2.3:o:qnap:qts:4.3.4.0597
Qnap » Qts » Version: 4.3.4.0604

cpe:2.3:o:qnap:qts:4.3.4.0604
Qnap » Qts » Version: 4.3.4.0899

cpe:2.3:o:qnap:qts:4.3.4.0899
Qnap » Qts » Version: 4.3.4.1029

cpe:2.3:o:qnap:qts:4.3.4.1029
Qnap » Qts » Version: 4.3.4.1082

cpe:2.3:o:qnap:qts:4.3.4.1082
Qnap » Qts » Version: 4.3.4.1190

cpe:2.3:o:qnap:qts:4.3.4.1190
Qnap » Qts » Version: 4.3.4.1282

cpe:2.3:o:qnap:qts:4.3.4.1282
Qnap » Qts » Version: 4.3.4.1368

cpe:2.3:o:qnap:qts:4.3.4.1368
Qnap » Qts » Version: 4.3.4.1417

cpe:2.3:o:qnap:qts:4.3.4.1417
Qnap » Qts » Version: 4.3.4.1463

cpe:2.3:o:qnap:qts:4.3.4.1463
Qnap » Qts » Version: 4.3.4.1632

cpe:2.3:o:qnap:qts:4.3.4.1632
Qnap » Qts » Version: 4.3.4.1652

cpe:2.3:o:qnap:qts:4.3.4.1652
Qnap » Qts » Version: 4.3.4.1976

cpe:2.3:o:qnap:qts:4.3.4.1976
Qnap » Qts » Version: 4.3.4.2107

cpe:2.3:o:qnap:qts:4.3.4.2107
Qnap » Qts » Version: 4.3.4.2242

cpe:2.3:o:qnap:qts:4.3.4.2242
Qnap » Qts » Version: 4.3.4.2451

cpe:2.3:o:qnap:qts:4.3.4.2451
Qnap » Qts » Version: 4.3.4.2675

cpe:2.3:o:qnap:qts:4.3.4.2675
Qnap » Qts » Version: 4.3.4.2814

cpe:2.3:o:qnap:qts:4.3.4.2814
Qnap » Qts » Version: 4.3.5

cpe:2.3:o:qnap:qts:4.3.5
Qnap » Qts » Version: 4.3.6

cpe:2.3:o:qnap:qts:4.3.6
Qnap » Qts » Version: 4.3.6.0895

cpe:2.3:o:qnap:qts:4.3.6.0895
Qnap » Qts » Version: 4.3.6.0907

cpe:2.3:o:qnap:qts:4.3.6.0907
Qnap » Qts » Version: 4.3.6.0923

cpe:2.3:o:qnap:qts:4.3.6.0923
Qnap » Qts » Version: 4.3.6.0944

cpe:2.3:o:qnap:qts:4.3.6.0944
Qnap » Qts » Version: 4.3.6.0959

cpe:2.3:o:qnap:qts:4.3.6.0959
Qnap » Qts » Version: 4.3.6.0979

cpe:2.3:o:qnap:qts:4.3.6.0979
Qnap » Qts » Version: 4.3.6.0993

cpe:2.3:o:qnap:qts:4.3.6.0993
Qnap » Qts » Version: 4.3.6.1013

cpe:2.3:o:qnap:qts:4.3.6.1013
Qnap » Qts » Version: 4.3.6.1033

cpe:2.3:o:qnap:qts:4.3.6.1033
Qnap » Qts » Version: 4.3.6.1070

cpe:2.3:o:qnap:qts:4.3.6.1070
Qnap » Qts » Version: 4.3.6.1154

cpe:2.3:o:qnap:qts:4.3.6.1154
Qnap » Qts » Version: 4.3.6.1218

cpe:2.3:o:qnap:qts:4.3.6.1218
Qnap » Qts » Version: 4.3.6.1263

cpe:2.3:o:qnap:qts:4.3.6.1263
Qnap » Qts » Version: 4.3.6.1286

cpe:2.3:o:qnap:qts:4.3.6.1286
Qnap » Qts » Version: 4.3.6.1333

cpe:2.3:o:qnap:qts:4.3.6.1333
Qnap » Qts » Version: 4.3.6.1411

cpe:2.3:o:qnap:qts:4.3.6.1411
Qnap » Qts » Version: 4.3.6.1446

cpe:2.3:o:qnap:qts:4.3.6.1446
Qnap » Qts » Version: 4.3.6.1620

cpe:2.3:o:qnap:qts:4.3.6.1620

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-28800

Products

Pricing

Contact Us