Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:qnap_nas_devices:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductQnap Nas Devices (ce0b5394-168b-5718-8c42-a020a5db0897)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-7197 vulnerable 2026-06-08 05:14:14.061963 Details available
A stored cross-site scripting (XSS) vulnerability has been reported to affect multiple versions of QTS. If exploited, this vulnerability may allow an attacker to inject and execute scripts on the administrator console. To fix this vulnerability, QNAP recommend updating QTS to the latest version.
Published: 2019-12-04T16:45:00.000Z
Updated: 2024-08-04T20:38:33.491Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-7193 vulnerable 2026-06-08 05:14:14.052446 Details available
This improper input validation vulnerability allows remote attackers to inject arbitrary code to the system. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.
Published: 2019-12-05T16:22:19.000Z
Updated: 2025-10-21T23:35:57.020Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-7183 vulnerable 2026-06-08 05:14:14.010094 Details available
This improper link resolution vulnerability allows remote attackers to access system files. To fix this vulnerability, QNAP recommend updating QTS to their latest versions.
Published: 2019-12-05T16:41:13.000Z
Updated: 2024-08-04T20:38:33.537Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-0730 vulnerable 2026-06-08 05:10:24.581700 Details available
This command injection vulnerability in File Station allows attackers to execute commands on the affected device. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.
Published: 2019-12-04T16:37:11.000Z
Updated: 2024-08-05T03:35:49.324Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-0729 vulnerable 2026-06-08 05:10:24.578465 Details available
This command injection vulnerability in Music Station allows attackers to execute commands on the affected device. To fix the vulnerability, QNAP recommend updating Music Station to their latest versions.
Published: 2019-12-04T16:33:08.000Z
Updated: 2024-08-05T03:35:49.140Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2018-0728 vulnerable 2026-06-08 05:10:24.577978 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.