CVE-2024-32766
De multiples vulnérabilités ont été découvertes dans <span class="textit">les produits Qnap</span>. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à la confidentialité des données et un contournement de la politique de sécurité.
EPSS 2.21% · 84.8th percentile
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qnap | N/A | |
| Qnap | QTS | |
| Qnap | QuTS hero |
Timeline
- Apr 26, 2024 CVE Published
- Apr 27, 2024 EPSS Score
- May 22, 2024 EPSS Score
- Jul 11, 2024 EPSS Score
- Aug 2, 2024 CVE Updated
- Aug 4, 2024 EPSS Score
- Sep 22, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 17, 2024 EPSS Score
- Nov 10, 2024 EPSS Score
- Dec 30, 2024 EPSS Score
- Jan 24, 2025 EPSS Score
References
- https://www.qnap.com/go/security-advisory/qsa-24-16 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-15 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-18 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-14 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-20 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-17 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-09 advisory