CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-28801

An out-of-bounds read vulnerability has been reported to affect certain QNAP switches running QSS. If exploited, this vulnerability allows attackers to read sensitive information on the system. This issue affects: QNAP Systems Inc. QSS versions prior to 1.0.2 build 20210122 on QSW-M2108-2C; versions prior to 1.0.2 build 20210122 on QSW-M2108-2S; versions prior to 1.0.2 build 20210122 on QSW-M2108R-2C.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 51.0%

CVSS Severity

CVSS v3 Score 3.1

CVSS v2 Score 5.0

References

https://www.qnap.com/zh-tw/security-advisory/qsa-21-23
https://www.qnap.com/zh-tw/security-advisory/qsa-21-23

Products affected by CVE-2021-28801

Qnap » Qss » Version: N/A

cpe:2.3:a:qnap:qss:-
Qnap » Qsw-M2108-2c » Version: N/A

cpe:2.3:h:qnap:qsw-m2108-2c:-
Qnap » Qsw-M2108-2s » Version: N/A

cpe:2.3:h:qnap:qsw-m2108-2s:-
Qnap » Qsw-M2108r-2c » Version: N/A

cpe:2.3:h:qnap:qsw-m2108r-2c:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-28801

Products

Pricing

Contact Us