Firmware & Software

A vulnerability has been reported to affect PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24, and 7.3.x below 7.3.11. If exploi ... More

QNAP recently detected a new DeadBolt ransomware campaign. According to victim reports so far, the campaign appears to target QNAP ... More

A cross-site request forgery (CSRF) vulnerability has been reported to affect QNAP NAS running Proxy Server. If exploited, this vu ... More

OpenSSL recently disclosed multiple vulnerabilities:   CVE-2022-1292: The c_rehash script allows command injection CVE-2022- ... More

Multiple vulnerabilities have been reported to affect QTS, QuTS hero, and QuTScloud:    CVE-2021-44051: Command in ... More

A vulnerability has been reported to affect QNAP NAS running Photo Station. If exploited, this vulnerability allows attackers to c ... More

Multiple vulnerabilities have been reported to affect QNAP NAS running certain versions of Video Station. If exploited, this vulne ... More

A path traversal vulnerability in thttpd has been reported to affect QNAP devices running QTS, QuTS hero, and QuTScloud. If exploi ... More

A vulnerability has been reported to affect QNAP VS Series NVR running QVR. If exploited, this vulnerability allows remote attacke ... More

Upon the latest release of Netatalk 3.1.13, the Netatalk development team disclosed multiple fixed vulnerabilities affecting earli ... More

The Apache Software Foundation and the Apache HTTP Server Project announced multiple vulnerabilities that have been fixed in their ... More

Internet Systems Consortium (ISC) recently disclosed multiple vulnerabilities in ISC BIND:   CVE-2022-0667: Assertion failur ... More

A remote code execution vulnerability has been reported to affect Apache Struts versions 2.0.0 to 2.5.29. A previous fix for the v ... More

An infinite loop vulnerability in OpenSSL has been reported to affect certain QNAP NAS. If exploited, the vulnerability allows att ... More

A local privilege escalation vulnerability, also known as "dirty pipe", has been reported to affect the Linux kernel on ... More

  A local privilege escalation vulnerability, also known as "dirty pipe", has been reported to affect the Linux ker ... More

  A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization ... More

Cross-site scripting (XSS) vulnerabilities have been reported to affect QNAP NAS running Proxy Server. If exploited, this vulnerab ... More

A vulnerability has been reported to affect QTS 4.5.3 and later versions, and QuTS hero h4.5.3 and later versions. If exploited, t ... More

Multiple vulnerabilities in Samba have been reported to affect QNAP NAS. If exploited, these vulnerabilities allow attackers to ac ... More