A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to modify memory or crash processes. We have already fixed the vulnerability in the following versions: QTS 5.2.4.3079 build 20250321 and later QuTS hero h5.2.4.3079 build 20250321 and later
History

Fri, 06 Jun 2025 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 06 Jun 2025 16:00:00 +0000

Type Values Removed Values Added
Description A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to modify memory or crash processes. We have already fixed the vulnerability in the following versions: QTS 5.2.4.3079 build 20250321 and later QuTS hero h5.2.4.3079 build 20250321 and later
Title QTS, QuTS hero
Weaknesses CWE-120
CWE-122
References
Metrics cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: qnap

Published: 2025-06-06T15:53:13.936Z

Updated: 2025-06-06T16:35:40.607Z

Reserved: 2024-12-31T09:31:29.719Z

Link: CVE-2024-56805

cve-icon Vulnrichment

Updated: 2025-06-06T16:19:30.898Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-06-06T16:15:23.660

Modified: 2025-06-09T12:15:47.880

Link: CVE-2024-56805

cve-icon Redhat

No data.