A buffer copy without checking size of input vulnerability has been reported to affect QNAP operating systems. If exploited, the vulnerability possibly allows remote users to execute code via unspecified vectors.
We have already fixed the vulnerability in the following versions:
Multimedia Console 2.1.1 ( 2023/03/29 ) and later
Multimedia Console 1.4.7 ( 2023/03/20 ) and later
References
Link | Resource |
---|---|
https://www.qnap.com/en/security-advisory/qsa-23-29 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: qnap
Published: 2023-09-22T03:51:02.028Z
Updated: 2023-09-22T03:51:02.028Z
Reserved: 2023-01-11T20:15:53.085Z
Link: CVE-2023-23364
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-22T04:15:54.213
Modified: 2023-09-26T13:13:26.473
Link: CVE-2023-23364
JSON object: View
Redhat Information
No data.
CWE