6.8

CVSS3.1

CVE-2022-27600 - QTS, QuTS hero, QuTScloud

An uncontrolled resource consumption vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers to launch a denial-of-service (DoS) attack. We have already fixed the vulnerability in the following versions: QTS 5.0…

πŸ“… Published: Dec. 19, 2024, 1:39 a.m. πŸ”„ Last Modified: Dec. 8, 2025, 6:46 p.m.

7.3

CVSS3.1

CVE-2023-23354 - QuLog Center

A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to bypass security mechanisms or read application data. We have already fixed the vulnerability in…

πŸ“… Published: Dec. 19, 2024, 1:39 a.m. πŸ”„ Last Modified: Jan. 20, 2026, 9:59 p.m.

5.5

CVSS3.1

CVE-2023-23356 - QuFirewall

A command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute arbitrary commands. We have already fixed the vulnerability in the following versions: …

πŸ“… Published: Dec. 19, 2024, 1:39 a.m. πŸ”„ Last Modified: Sept. 24, 2025, 7:35 p.m.

4.8

CVSS3.1

CVE-2023-23357 - QuLog Center

A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to bypass security mechanisms or read application data. We have already fixed the vulnera…

πŸ“… Published: Dec. 19, 2024, 1:39 a.m. πŸ”„ Last Modified: Jan. 20, 2026, 9:56 p.m.

7.8

CVSS3.1

CVE-2024-35141 - IBM Security Verify Access privilege escalation

IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate their privileges due to execution of unnecessary privileges.

πŸ“… Published: Dec. 19, 2024, 1:10 a.m. πŸ”„ Last Modified: Nov. 3, 2025, 10:16 p.m.

5.3

CVSS3.1

CVE-2023-30443 - IBM Db2 denial of service

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query.

πŸ“… Published: Dec. 19, 2024, 1:04 a.m. πŸ”„ Last Modified: Jan. 31, 2025, 3:27 p.m.

4.6

CVSS3.1

CVE-2022-33954 - IBM Robotic Process Automation information disclosure

IBM Robotic Process Automation 21.0.1, 21.0.2, and 21.0.3 could allow a user with psychical access to the system to obtain sensitive information due to insufficiently protected credentials.

πŸ“… Published: Dec. 19, 2024, 12:44 a.m. πŸ”„ Last Modified: March 27, 2025, 3:59 p.m.

5.9

CVSS3.1

CVE-2021-39081 - IBM Cognos Analytics Mobile information disclosure

IBM Cognos Analytics Mobile for Android 1.1.14 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

πŸ“… Published: Dec. 19, 2024, 12:22 a.m. πŸ”„ Last Modified: July 29, 2025, 11:42 p.m.

7.5

CVSS3.1

CVE-2024-55082 -

A Server-Side Request Forgery (SSRF) in the endpoint http://{your-server}/url-to-pdf of Stirling-PDF 0.35.1 allows attackers to access sensitive information via a crafted request.

πŸ“… Published: Dec. 19, 2024, midnight πŸ”„ Last Modified: Jan. 2, 2025, 8:16 p.m.

9.8

CVSS3.1

CVE-2024-54983 -

An issue in Quectel BC95-CNV V100R001C00SPC051 allows attackers to bypass authentication via a crafted NAS message.

πŸ“… Published: Dec. 19, 2024, midnight πŸ”„ Last Modified: Dec. 31, 2024, 8:16 p.m.
Total resulsts: 343968
Page 6893 of 34,397
Β« previous page Β» next page
Filters