| |
Vulnerability CVE-2023-41276
Published: 2024-02-02
| Description: |
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.2.2533 build 20230926 and later
QuTS hero h5.1.2.2534 build 20230927 and later
QuTScloud c5.1.5.2651 and later
|
Type:
CWE-120 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'))
References: |
https://www.qnap.com/en/security-advisory/qsa-23-38
|
|
|
Copyright 2026, cxsecurity.com
|
|
|
