QNAP Systems Inc. — Vulnerabilities & Security Advisories 532

Browse all 532 CVE security advisories affecting QNAP Systems Inc.. AI-powered Chinese analysis, POCs, and references for each vulnerability.

QNAP Systems Inc. manufactures network-attached storage devices and enterprise storage solutions, primarily serving small to medium-sized businesses and home users seeking centralized data management. Historically, the company’s firmware has exhibited a high volume of vulnerabilities, including remote code execution, cross-site scripting, and privilege escalation flaws. These issues often stem from insufficient input validation and improper access controls within the web management interface or embedded services. Notable incidents involve critical RCE vulnerabilities that allow unauthenticated attackers to gain full system control, exposing connected data to theft or ransomware encryption. The sheer number of recorded CVEs highlights persistent challenges in secure coding practices and rigorous patch management across its diverse product line. While QNAP provides security updates, the frequency of disclosed flaws necessitates strict network segmentation and proactive monitoring for administrators relying on these storage appliances for critical infrastructure.

CVEs 532

CVE ID	Title	CVSS	Severity	Published
CVE-2023-32968	QTS, QuTS hero — QTSCWE-120	4.5	Medium	2023-12-08
CVE-2023-23372	QTS, QuTS hero — QTSCWE-79	6.5	Medium	2023-12-08
CVE-2023-32975	QTS, QuTS hero — QTSCWE-120	4.9	Medium	2023-12-08
CVE-2023-47565	Legacy VioStor NVR — VioStor NVRCWE-78	8.0	High	2023-12-08
CVE-2023-41285	QuMagie — QuMagieCWE-89	7.4	High	2023-11-10
CVE-2023-41284	QuMagie — QuMagieCWE-89	7.4	High	2023-11-10
CVE-2023-39295	QuMagie — QuMagieCWE-78	8.8	High	2023-11-10
CVE-2023-23367	QTS, QuTS hero, QuTScloud — QTSCWE-78	4.7	Medium	2023-11-10
CVE-2023-39301	QTS, QuTS hero, QuTScloud — QTSCWE-918	4.3	Medium	2023-11-03
CVE-2023-39299	Music Station — Music StationCWE-22	7.5	High	2023-11-03
CVE-2023-23369	QTS, Multimedia Console, and Media Streaming add-on — Multimedia ConsoleCWE-77	9.0	Critical	2023-11-03
CVE-2023-23368	QTS, QuTS hero, QuTScloud — QTSCWE-78	9.8	Critical	2023-11-03
CVE-2023-23373	QUSBCam2 — QUSBCam2CWE-78	8.8	High	2023-10-20
CVE-2023-34977	Video Station — Video StationCWE-79	4.6	Medium	2023-10-13
CVE-2023-34976	Video Station — Video StationCWE-89	10.0	Critical	2023-10-13
CVE-2023-34975	QTS, QuTS hero, QuTScloud — QuTS heroCWE-78	6.6	Medium	2023-10-13
CVE-2023-32976	Container Station — Container StationCWE-78	6.6	Medium	2023-10-13
CVE-2023-32974	QTS, QuTS hero, QuTScloud — QTSCWE-22	7.5	High	2023-10-13
CVE-2023-32973	QTS, QuTS hero, QuTScloud — QTSCWE-120	3.8	Low	2023-10-13
CVE-2023-32970	QTS, QuTS hero, QuTScloud — QuTS heroCWE-476	4.9	Medium	2023-10-13
CVE-2023-32972	QTS, QuTS hero, QuTScloud — QTSCWE-120	3.8	Low	2023-10-06
CVE-2023-32971	QTS, QuTS hero, QuTScloud — QTSCWE-120	3.8	Low	2023-10-06
CVE-2023-23371	QVPN Device Client — QVPN WindowsCWE-311	5.2	Medium	2023-10-06
CVE-2023-23370	QVPN Device Client — QVPN WindowsCWE-522	6.7	Medium	2023-10-06
CVE-2023-23366	Music Station — Music StationCWE-22	7.7	High	2023-10-06
CVE-2023-23365	Music Station — Music StationCWE-22	7.7	High	2023-10-06
CVE-2023-23364	Multimedia Console — Multimedia ConsoleCWE-120	8.1	High	2023-09-22
CVE-2023-23363	QTS — QTSCWE-120	8.1	High	2023-09-22
CVE-2023-23362	QTS, QuTS hero, QuTScloud — QTSCWE-78	8.8	High	2023-09-22
CVE-2022-27599	QVR Pro Client — QVR Pro ClientCWE-532	6.7	Medium	2023-09-08

This page lists every published CVE security advisory associated with QNAP Systems Inc.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

QNAP Systems Inc. — Vulnerabilities & Security Advisories 532