QNAP Product Security Update Advisory

May 23 2024

Overview

An update has been released to address vulnerabilities in QNAP products. Users of affected versions are advised to update to the latest version.

Affected Products

QTS 5.1.x version

QuTS hero h5.1.x version

Resolved Vulnerabilities

Arbitrary code execution over the network vulnerability due to copying a buffer without checking the input size (CVE-2024-27130)

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

QTS 5.1.7.2770 build 20240520 and later versions

QuTS Hero h5.1.7.2770 build 20240520 and later versions

Referenced Sites

[1] CVE-2024-27130 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-27130

[2] Vulnerabilities in QTS and QuTS hero

https://www.qnap.com/en/security-advisory/qsa-24-23

QNAP Product Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

ManageEngine (PAM360) Product May 2024 Security Update Advisory

Google Chrome Browser (125.0.6422.112/.113) Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

ManageEngine (PAM360) Product May 2024 Security Update Advisory

Google Chrome Browser (125.0.6422.112/.113) Security Update Advisory