VDB
CVE-2022-27597
CVE-2022-27597
PUBLISHED
In QNAP NAS existieren mehrere Schwachstellen. Diese werden im Detail nicht beschrieben. Ein entfernter, authentisierter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen oder Informationen offenzulegen.
EPSS 0.16% · 36.3th percentile
Risk Scores
EPSS Score
0.16%
36.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| QNAP | QNAP NAS |
Timeline
- Jun 28, 2021 PoC Published
- Apr 22, 2022 PoC Published
- Mar 28, 2023 CVE Published
- Mar 29, 2023 EPSS Score
- Mar 29, 2023 CVE Updated
- May 6, 2023 EPSS Score
- Jun 9, 2023 PoC Published
- Jun 13, 2023 EPSS Score
- Jul 15, 2023 PoC Published
- Jul 22, 2023 EPSS Score
- Aug 29, 2023 EPSS Score
- Oct 5, 2023 PoC Published
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0785.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0785 advisory
- https://www.qnap.com/de-de/security-advisory/QSA-23-10 advisory
- https://www.qnap.com/de-de/security-advisory/QSA-23-06 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2023-23355 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-27598 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-27597 advisory