Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
QTS, QuTS hero
Vulnerability Description
An authentication bypass by spoofing vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to access resources which are not otherwise accessible without proper authentication. We have already fixed the vulnerability in the following versions: QTS 5.2.7.3297 build 20251024 and later QuTS hero h5.2.7.3297 build 20251024 and later QuTS hero h5.3.1.3292 build 20251024 and later
CVSS Information
N/A
Vulnerability Type
使用欺骗进行的认证绕过
Vulnerability Title
QNAP Systems Hero和QNAP Systems QTS 安全漏洞
Vulnerability Description
QNAP Systems Hero和QNAP Systems QTS都是中国威联通科技(QNAP Systems)公司的产品。QNAP Systems Hero是一款用于管理文件的NAS操作系统。该系统保留了QTS的应用生态,整合更强大的128位ZFS文件系统,为企业提供更稳定可靠的NAS存储解决方案。QNAP Systems QTS是一个入门操作系统。 QNAP Systems Hero和QNAP Systems QTS存在安全漏洞,该漏洞源于身份验证绕过,可能导致未经授权访问资源。
CVSS Information
N/A
Vulnerability Type
N/A