This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/o:qnap:qts:4.1.4
Detail
VendorQnapFirst view 2015-10-15
ProductQtsLast view2018-06-21
Version4.1.4TypeOs
Edition 
Language 
Update 
 
CPE Productcpe:/o:qnap:qts

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
7.52018-06-21CVE-2018-0712NetworkLowNone Requ...
7.52017-12-21CVE-2017-17033NetworkLowNone Requ...
7.52017-12-21CVE-2017-17032NetworkLowNone Requ...
7.52017-12-21CVE-2017-17031NetworkLowNone Requ...
7.52017-12-21CVE-2017-17030NetworkLowNone Requ...
Hide | Show 11 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.52017-12-21CVE-2017-17029NetworkLowNone Requ...
7.52017-12-21CVE-2017-17028NetworkLowNone Requ...
7.52017-12-21CVE-2017-17027NetworkLowNone Requ...
7.52017-06-15CVE-2017-7876NetworkLowNone Requ...
52017-06-15CVE-2017-7629NetworkLowNone Requ...
102017-03-23CVE-2017-6361NetworkLowNone Requ...
102017-03-23CVE-2017-6360NetworkLowNone Requ...
102017-03-23CVE-2017-6359NetworkLowNone Requ...
52017-03-23CVE-2017-5227NetworkLowNone Requ...
4.32016-07-03CVE-2015-5664NetworkMediumNone Requ...
9.32015-10-15CVE-2015-6003NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
43% (7)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
18% (3)CWE-78Improper Sanitization of Special Elements used in an OS Command ('O...
12% (2)CWE-77Improper Sanitization of Special Elements used in a Command ('Comma...
6% (1)CWE-640Weak Password Recovery Mechanism for Forgotten Password
6% (1)CWE-200Information Exposure
Hide | Show 2 More...
%idName
6% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
6% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...

Snort® IPS/IDS

DateDescription
2017-05-16QNAP NAS utilRequest.cgi command injection attempt
RuleID : 42241 - Type : SERVER-WEBAPP - Revision : 2
2017-05-16QNAP NAS utilRequest.cgi command injection attempt
RuleID : 42240 - Type : SERVER-WEBAPP - Revision : 2
2017-05-16QNAP NAS utilRequest.cgi command injection attempt
RuleID : 42239 - Type : SERVER-WEBAPP - Revision : 2
2017-05-16QNAP NAS userConfig.cgi command injection attempt
RuleID : 42238 - Type : SERVER-WEBAPP - Revision : 2
2017-05-16QNAP NAS userConfig.cgi command injection attempt
RuleID : 42237 - Type : SERVER-WEBAPP - Revision : 2
Hide | Show 2 More...
DateDescription
2017-05-16QNAP NAS userConfig.cgi command injection attempt
RuleID : 42236 - Type : SERVER-WEBAPP - Revision : 2
2017-05-16QNAP NAS authLogin.cgi command injection attempt
RuleID : 42234 - Type : SERVER-WEBAPP - Revision : 2