Skip to main content

The most serious vulnerabilities could allow a remote unauthenticated attacker to gain unauthorised access to QNAP products

Threat ID:CC-4581
Threat Severity:Medium
Published:27 November 2024 1:05 PM

Summary

The most serious vulnerabilities could allow a remote unauthenticated attacker to gain unauthorised access to QNAP products

Affected platforms

The following platforms are known to be affected:

Versions: all prior to version 3.9.7
QNAP Notes Station 3
Versions: all prior to version 6.4.3
QNAP Photo Station
Versions: all prior to 3.4.1
QNAP AI Core
Versions: all prior to 1.8.0.888, all prior to 1.7.0.831
QNAP QuLog Center
Versions: all prior to 5.2.1.2930 build 20241025
QNAP QTS
Versions: all prior to 2.1.2929 build 20241025
QNAP QuTS Hero
Versions: all prior to 2.4.3.106
QNAP QuRouter

The following platforms are also known to be affected:

  • OpenSSH
  • Vulnerability in Media Streaming Add-on

Threat details

Introduction

QNAP has released eight advisories for multiple products including Note Station 3, Photo Station, AI Core, QuLog Center, QuRouter, QTS, and QuTS.

The most critical vulnerability, CVE-2024-38643, has a CVSSv3 score of 9.8 and affects Note Station 3. A remote unauthenticated attacker could exploit CVE-2024-38643 to gain unauthorised access to the system. 

Remediation advice

Affected organisations are encouraged to review the relevant QNAP Security Advisories and apply any applicable updates.

Definitive source of threat updates

CVE Vulnerabilities

StatusPublished
CVE-2024-38643A missing authentication for critical function vulnerability has been reported to affect Notes Station 3. If exploited, the vulnerability could allow remote attackers to gain access to and execute certain functions. 
StatusPublished
CVE-2024-38644An OS command injection vulnerability has been reported to affect Notes Station 3. If exploited, the vulnerability could allow remote authenticated attackers to execute commands. 
StatusPublished
CVE-2024-50396A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers to obtain secret data or modify memory. 
StatusPublished
CVE-2024-50397A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to obtain secret data or modify memory. We have already fixed the vulnerability in the following versions: QTS 5.2.1.2930 build 20241025 and later QuTS hero h5.2.1.2929 build 20241025 and later
StatusPublished
CVE-2024-50398A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory.
StatusPublished
CVE-2024-50399A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. 
StatusPublished
CVE-2024-50400A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. 
StatusPublished
CVE-2024-50401A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory.

Last edited: 27 November 2024 1:05 pm

Back to top