Home
MEDIUM: 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:HDefault status
unaffected
5.0.x (custom) before 5.0.1.2277
affected
4.5.x (custom) before 4.5.4.2280 build 20230112
affected
Default status
unaffected
h5.0.x (custom) before h5.0.1.2277 build 20230112
affected
h4.5.x (custom) before h4.5.4.2374 build 20230417
affected
Default status
unaffected
c5.x.x (custom) before c5.0.1.2374
affected
Description
An uncontrolled resource consumption vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the following versions: QTS 5.0.1.2277 and later QTS 4.5.4.2280 build 20230112 and later QuTS hero h5.0.1.2277 build 20230112 and later QuTS hero h4.5.4.2374 build 20230417 and later QuTScloud c5.0.1.2374 and later
Problem types
Product status
5.0.x (custom) before 5.0.1.2277
4.5.x (custom) before 4.5.4.2280 build 20230112
h5.0.x (custom) before h5.0.1.2277 build 20230112
h4.5.x (custom) before h4.5.4.2374 build 20230417
c5.x.x (custom) before c5.0.1.2374
Credits
huasheng_mangguo
References
www.qnap.com/en/security-advisory/qsa-23-09