Skip to main content

QNAP NAS Multiple Vulnerabilities

Release Date: 16 Aug 2022 5868 Views

RISK: Medium Risk

TYPE: Servers - Other Servers

TYPE: Other Servers

Multiple vulnerabilities were identified in QNAP NAS. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure, cross-site scripting and security restriction bypass on the targeted system.


  • Denial of Service
  • Elevation of Privilege
  • Remote Code Execution
  • Information Disclosure
  • Cross-Site Scripting
  • Security Restriction Bypass

System / Technologies affected

  • QTS 4.2.x
  • QTS 4.3.x
  • QTS 4.5.x/4.4.x
  • QTS 5.0.0
  • QTS 5.0.1
  • QuTS hero h4.5.x
  • QuTS hero h5.0.0
  • QuTS hero h5.0.1
  • QuTScloud c5.0.1


Before installation of the software, please visit the vendor web-site for more details.


Vulnerability Identifier


Related Link