CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-23367

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 5.0.1.2376 build 20230421 and later QuTS hero h5.0.1.2376 build 20230421 and later QuTScloud c5.1.0.2498 and later

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.3%

CVSS Severity

CVSS v3 Score 4.7

References

Products affected by CVE-2023-23367

Qnap » Qts » Version: 5.0.0.1716

cpe:2.3:o:qnap:qts:5.0.0.1716
Qnap » Qts » Version: 5.0.0.1785

cpe:2.3:o:qnap:qts:5.0.0.1785
Qnap » Qts » Version: 5.0.0.1808

cpe:2.3:o:qnap:qts:5.0.0.1808
Qnap » Qts » Version: 5.0.0.1828

cpe:2.3:o:qnap:qts:5.0.0.1828
Qnap » Qts » Version: 5.0.0.1837

cpe:2.3:o:qnap:qts:5.0.0.1837
Qnap » Qts » Version: 5.0.0.1850

cpe:2.3:o:qnap:qts:5.0.0.1850
Qnap » Qts » Version: 5.0.0.1853

cpe:2.3:o:qnap:qts:5.0.0.1853
Qnap » Qts » Version: 5.0.0.1858

cpe:2.3:o:qnap:qts:5.0.0.1858
Qnap » Qts » Version: 5.0.0.1870

cpe:2.3:o:qnap:qts:5.0.0.1870
Qnap » Qts » Version: 5.0.1.2034

cpe:2.3:o:qnap:qts:5.0.1.2034
Qnap » Qts » Version: 5.0.1.2079

cpe:2.3:o:qnap:qts:5.0.1.2079
Qnap » Qts » Version: 5.0.1.2131

cpe:2.3:o:qnap:qts:5.0.1.2131
Qnap » Qts » Version: 5.0.1.2137

cpe:2.3:o:qnap:qts:5.0.1.2137
Qnap » Qts » Version: 5.0.1.2145

cpe:2.3:o:qnap:qts:5.0.1.2145
Qnap » Qts » Version: 5.0.1.2173

cpe:2.3:o:qnap:qts:5.0.1.2173
Qnap » Qts » Version: 5.0.1.2194

cpe:2.3:o:qnap:qts:5.0.1.2194
Qnap » Qts » Version: 5.0.1.2234

cpe:2.3:o:qnap:qts:5.0.1.2234
Qnap » Qts » Version: 5.0.1.2248

cpe:2.3:o:qnap:qts:5.0.1.2248
Qnap » Qts » Version: 5.0.1.2277

cpe:2.3:o:qnap:qts:5.0.1.2277
Qnap » Qts » Version: 5.0.1.2346

cpe:2.3:o:qnap:qts:5.0.1.2346
Qnap » Quts Hero » Version: h5.0.0.1772

cpe:2.3:o:qnap:quts_hero:h5.0.0.1772
Qnap » Quts Hero » Version: h5.0.0.1844

cpe:2.3:o:qnap:quts_hero:h5.0.0.1844
Qnap » Quts Hero » Version: h5.0.0.1856

cpe:2.3:o:qnap:quts_hero:h5.0.0.1856
Qnap » Quts Hero » Version: h5.0.0.1892

cpe:2.3:o:qnap:quts_hero:h5.0.0.1892
Qnap » Quts Hero » Version: h5.0.0.1900

cpe:2.3:o:qnap:quts_hero:h5.0.0.1900
Qnap » Quts Hero » Version: h5.0.0.1949

cpe:2.3:o:qnap:quts_hero:h5.0.0.1949
Qnap » Quts Hero » Version: h5.0.0.1986

cpe:2.3:o:qnap:quts_hero:h5.0.0.1986
Qnap » Quts Hero » Version: h5.0.0.2022

cpe:2.3:o:qnap:quts_hero:h5.0.0.2022
Qnap » Quts Hero » Version: h5.0.0.2069

cpe:2.3:o:qnap:quts_hero:h5.0.0.2069
Qnap » Quts Hero » Version: h5.0.0.2120

cpe:2.3:o:qnap:quts_hero:h5.0.0.2120
Qnap » Quts Hero » Version: h5.0.1.2045

cpe:2.3:o:qnap:quts_hero:h5.0.1.2045
Qnap » Quts Hero » Version: h5.0.1.2192

cpe:2.3:o:qnap:quts_hero:h5.0.1.2192
Qnap » Quts Hero » Version: h5.0.1.2248

cpe:2.3:o:qnap:quts_hero:h5.0.1.2248
Qnap » Quts Hero » Version: h5.0.1.2269

cpe:2.3:o:qnap:quts_hero:h5.0.1.2269
Qnap » Quts Hero » Version: h5.0.1.2277

cpe:2.3:o:qnap:quts_hero:h5.0.1.2277
Qnap » Quts Hero » Version: h5.0.1.2348

cpe:2.3:o:qnap:quts_hero:h5.0.1.2348
Qnap » Qutscloud » Version: c5.0.0.1919

cpe:2.3:o:qnap:qutscloud:c5.0.0.1919
Qnap » Qutscloud » Version: c5.0.1.1949

cpe:2.3:o:qnap:qutscloud:c5.0.1.1949
Qnap » Qutscloud » Version: c5.0.1.1998

cpe:2.3:o:qnap:qutscloud:c5.0.1.1998
Qnap » Qutscloud » Version: c5.0.1.2044

cpe:2.3:o:qnap:qutscloud:c5.0.1.2044
Qnap » Qutscloud » Version: c5.0.1.2148

cpe:2.3:o:qnap:qutscloud:c5.0.1.2148
Qnap » Qutscloud » Version: c5.0.1.2374

cpe:2.3:o:qnap:qutscloud:c5.0.1.2374

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-23367

Products

Pricing

Contact Us