gsd-2023-47218
Vulnerability from gsd
Modified
2023-12-13 01:20
Details
An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network.
We have already fixed the vulnerability in the following versions:
QTS 5.1.5.2645 build 20240116 and later
QuTS hero h5.1.5.2647 build 20240118 and later
QuTScloud c5.1.5.2651 and later
Aliases
Aliases
{ GSD: { alias: "CVE-2023-47218", id: "GSD-2023-47218", }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2023-47218", ], details: "An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.5.2645 build 20240116 and later\nQuTS hero h5.1.5.2647 build 20240118 and later\nQuTScloud c5.1.5.2651 and later\n", id: "GSD-2023-47218", modified: "2023-12-13T01:20:51.673021Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "security@qnap.com", ID: "CVE-2023-47218", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "QTS", version: { version_data: [ { version_value: "not down converted", x_cve_json_5_version_data: { defaultStatus: "unaffected", versions: [ { lessThan: "5.1.5.2645 build 20240116", status: "affected", version: "5.1.x", versionType: "custom", }, { status: "unaffected", version: "4.x", }, ], }, }, ], }, }, { product_name: "QuTS hero", version: { version_data: [ { version_value: "not down converted", x_cve_json_5_version_data: { defaultStatus: "unaffected", versions: [ { lessThan: "h5.1.5.2647 build 20240118", status: "affected", version: "h5.1.x", versionType: "custom", }, { status: "unaffected", version: "h4.x", }, ], }, }, ], }, }, { product_name: "QuTScloud", version: { version_data: [ { version_affected: "<", version_name: "c5.x", version_value: "c5.1.5.2651", }, ], }, }, ], }, vendor_name: "QNAP Systems Inc.", }, ], }, }, credits: [ { lang: "en", value: "Stephen Fewer, Principal Security Researcher at Rapid7", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.5.2645 build 20240116 and later\nQuTS hero h5.1.5.2647 build 20240118 and later\nQuTScloud c5.1.5.2651 and later\n", }, ], }, generator: { engine: "Vulnogram 0.1.0-dev", }, impact: { cvss: [ { attackComplexity: "HIGH", attackVector: "ADJACENT_NETWORK", availabilityImpact: "LOW", baseScore: 5.8, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L", version: "3.1", }, ], }, problemtype: { problemtype_data: [ { description: [ { cweId: "CWE-77", lang: "eng", value: "CWE-77", }, { cweId: "CWE-78", lang: "eng", value: "CWE-78", }, ], }, ], }, references: { reference_data: [ { name: "https://www.qnap.com/en/security-advisory/qsa-23-57", refsource: "MISC", url: "https://www.qnap.com/en/security-advisory/qsa-23-57", }, { name: "https://www.rapid7.com/blog/post/2024/02/13/cve-2023-47218-qnap-qts-and-quts-hero-unauthenticated-command-injection-fixed/", refsource: "MISC", url: "https://www.rapid7.com/blog/post/2024/02/13/cve-2023-47218-qnap-qts-and-quts-hero-unauthenticated-command-injection-fixed/", }, ], }, solution: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "We have already fixed the vulnerability in the following versions:<br>QTS 5.1.5.2645 build 20240116 and later<br>QuTS hero h5.1.5.2647 build 20240118 and later<br>QuTScloud c5.1.5.2651 and later<br>", }, ], value: "We have already fixed the vulnerability in the following versions:\nQTS 5.1.5.2645 build 20240116 and later\nQuTS hero h5.1.5.2647 build 20240118 and later\nQuTScloud c5.1.5.2651 and later\n", }, ], source: { advisory: "QSA-23-57", discovery: "EXTERNAL", }, }, "nvd.nist.gov": { cve: { descriptions: [ { lang: "en", value: "An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.5.2645 build 20240116 and later\nQuTS hero h5.1.5.2647 build 20240118 and later\nQuTScloud c5.1.5.2651 and later\n", }, { lang: "es", value: "Se ha informado que una vulnerabilidad de inyección de comandos del sistema operativo afecta a varias versiones del sistema operativo QNAP. Si se explota, la vulnerabilidad podría permitir a los usuarios ejecutar comandos a través de una red. Ya hemos solucionado la vulnerabilidad en las siguientes versiones: QTS 5.1.5.2645 compilación 20240116 y posteriores QuTS hero h5.1.5.2647 compilación 20240118 y posteriores QuTScloud c5.1.5.2651 y posteriores", }, ], id: "CVE-2023-47218", lastModified: "2024-02-15T06:15:45.653", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "HIGH", attackVector: "ADJACENT_NETWORK", availabilityImpact: "LOW", baseScore: 5.8, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L", version: "3.1", }, exploitabilityScore: 1.6, impactScore: 3.7, source: "security@qnapsecurity.com.tw", type: "Secondary", }, ], }, published: "2024-02-13T03:15:07.700", references: [ { source: "security@qnapsecurity.com.tw", url: "https://www.qnap.com/en/security-advisory/qsa-23-57", }, { source: "security@qnapsecurity.com.tw", url: "https://www.rapid7.com/blog/post/2024/02/13/cve-2023-47218-qnap-qts-and-quts-hero-unauthenticated-command-injection-fixed/", }, ], sourceIdentifier: "security@qnapsecurity.com.tw", vulnStatus: "Awaiting Analysis", weaknesses: [ { description: [ { lang: "en", value: "CWE-77", }, { lang: "en", value: "CWE-78", }, ], source: "security@qnapsecurity.com.tw", type: "Primary", }, ], }, }, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.