FKIE_CVE-2024-53691
Vulnerability from fkie_nvd - Published: 2024-12-06 17:15 - Updated: 2025-09-23 14:20
Severity ?
Summary
A link following vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to traverse the file system to unintended locations.
We have already fixed the vulnerability in the following versions:
QTS 5.1.8.2823 build 20240712 and later
QTS 5.2.0.2802 build 20240620 and later
QuTS hero h5.1.8.2823 build 20240712 and later
QuTS hero h5.2.0.2802 build 20240620 and later
References
| URL | Tags | ||
|---|---|---|---|
| security@qnapsecurity.com.tw | https://www.qnap.com/en/security-advisory/qsa-24-28 | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| qnap | qts | 5.1.0.2348 | |
| qnap | qts | 5.1.0.2399 | |
| qnap | qts | 5.1.0.2418 | |
| qnap | qts | 5.1.0.2444 | |
| qnap | qts | 5.1.0.2466 | |
| qnap | qts | 5.1.1.2491 | |
| qnap | qts | 5.1.2.2533 | |
| qnap | qts | 5.1.3.2578 | |
| qnap | qts | 5.1.4.2596 | |
| qnap | qts | 5.1.5.2645 | |
| qnap | qts | 5.1.5.2679 | |
| qnap | qts | 5.1.6.2722 | |
| qnap | qts | 5.1.7.2770 | |
| qnap | qts | 5.2.0.2737 | |
| qnap | qts | 5.2.0.2744 | |
| qnap | qts | 5.2.0.2782 | |
| qnap | quts_hero | h5.1.0.2409 | |
| qnap | quts_hero | h5.1.0.2424 | |
| qnap | quts_hero | h5.1.0.2453 | |
| qnap | quts_hero | h5.1.0.2466 | |
| qnap | quts_hero | h5.1.1.2488 | |
| qnap | quts_hero | h5.1.2.2534 | |
| qnap | quts_hero | h5.1.3.2578 | |
| qnap | quts_hero | h5.1.4.2596 | |
| qnap | quts_hero | h5.1.5.2647 | |
| qnap | quts_hero | h5.1.5.2680 | |
| qnap | quts_hero | h5.1.6.2734 | |
| qnap | quts_hero | h5.1.7.2770 | |
| qnap | quts_hero | h5.1.7.2788 | |
| qnap | quts_hero | h5.1.7.2794 | |
| qnap | quts_hero | h5.2.0.2737 | |
| qnap | quts_hero | h5.2.0.2782 | |
| qnap | quts_hero | h5.2.0.2789 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.0.2348:build_20230325:*:*:*:*:*:*",
"matchCriteriaId": "39382CBA-EA68-426A-AC07-A9A26E722CAB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.0.2399:build_20230515:*:*:*:*:*:*",
"matchCriteriaId": "BCB37C08-1DF7-4AF4-9BB1-C562E5643B5A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.0.2418:build_20230603:*:*:*:*:*:*",
"matchCriteriaId": "8368130C-F26D-41FE-8D78-B103A23B5327",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.0.2444:build_20230629:*:*:*:*:*:*",
"matchCriteriaId": "3E0EE181-78AF-4C3C-90A4-C69A2DE6E176",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.0.2466:build_20230721:*:*:*:*:*:*",
"matchCriteriaId": "56E3AE06-78DA-4844-ADC1-09A35F1C5B54",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.1.2491:build_20230815:*:*:*:*:*:*",
"matchCriteriaId": "D2AA7A32-0DA8-4417-A23E-C4F563BC7819",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.2.2533:build_20230926:*:*:*:*:*:*",
"matchCriteriaId": "80E7C17C-ED6D-439D-A1F3-1870A3ADA926",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.3.2578:build_20231110:*:*:*:*:*:*",
"matchCriteriaId": "636C2D9C-C837-4FAC-B79D-1CA7A7C1FF3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.4.2596:build_20231128:*:*:*:*:*:*",
"matchCriteriaId": "866B455B-0266-4990-920B-A06756ED5A61",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.5.2645:build_20240116:*:*:*:*:*:*",
"matchCriteriaId": "B3B5C4C5-5EE2-4E6F-927E-1D52A04895BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.5.2679:build_20240219:*:*:*:*:*:*",
"matchCriteriaId": "543E17BB-B552-4B65-B028-BE9A47E6F34B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.6.2722:build_20240402:*:*:*:*:*:*",
"matchCriteriaId": "EEDC247A-96D9-4140-AA72-52E4EEDC2121",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.1.7.2770:build_20240520:*:*:*:*:*:*",
"matchCriteriaId": "DDEF21B3-275E-446B-A6C4-FD30A567B600",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.2.0.2737:build_20240417:*:*:*:*:*:*",
"matchCriteriaId": "F4026A4B-7AB4-48EA-971D-88DFDD3F01A7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.2.0.2744:build_20240424:*:*:*:*:*:*",
"matchCriteriaId": "1F3F99BB-0D68-4D74-92C8-59E24F96C50D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:qts:5.2.0.2782:build_20240601:*:*:*:*:*:*",
"matchCriteriaId": "1DE63B4D-8E84-41D3-B1F3-04AE6040242B",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.0.2409:build_20230525:*:*:*:*:*:*",
"matchCriteriaId": "6CA398A8-EBDF-4D41-B15E-7B763F885021",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.0.2424:build_20230609:*:*:*:*:*:*",
"matchCriteriaId": "F63A5ED2-ECC2-49A0-BFA9-548E35ACD6C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.0.2453:build_20230708:*:*:*:*:*:*",
"matchCriteriaId": "53387FAC-7BE0-47D7-99BF-2B1F03C17CC3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.0.2466:build_20230721:*:*:*:*:*:*",
"matchCriteriaId": "D4226394-0023-4CD2-BB89-77251BF92FF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.1.2488:build_20230812:*:*:*:*:*:*",
"matchCriteriaId": "646257F7-D4A4-43B0-91F2-7850338B3CA1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.2.2534:build_20230927:*:*:*:*:*:*",
"matchCriteriaId": "88825AE1-B006-4F7F-BD90-D4B1CF1251A3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.3.2578:build_20231110:*:*:*:*:*:*",
"matchCriteriaId": "3F471666-4919-4770-956E-ACE4C55D29DB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.4.2596:build_20231128:*:*:*:*:*:*",
"matchCriteriaId": "9573F671-D49E-438A-B72C-DFC390A79093",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.5.2647:build_20240118:*:*:*:*:*:*",
"matchCriteriaId": "75E7938F-943F-428D-974D-42E790829F88",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.5.2680:build_20240220:*:*:*:*:*:*",
"matchCriteriaId": "12F5732D-C95F-45D1-968C-C2269DFDF6D4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.6.2734:build_20240414:*:*:*:*:*:*",
"matchCriteriaId": "94734596-A56A-4128-A39A-7E22FBD17835",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.7.2770:build_20240520:*:*:*:*:*:*",
"matchCriteriaId": "ACF87C5E-9508-4BA9-9218-3CBD8A8439A4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.7.2788:build_20240607:*:*:*:*:*:*",
"matchCriteriaId": "67E8977A-2363-4855-B284-6EBF8FB485A2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.1.7.2794:build_20240613:*:*:*:*:*:*",
"matchCriteriaId": "3A268686-341F-4E13-8CE6-493DE7E9CF70",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.2.0.2737:build_20240417:*:*:*:*:*:*",
"matchCriteriaId": "CDCBB36A-CB91-4BA3-A6ED-952E6A4A0481",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.2.0.2782:build_20240601:*:*:*:*:*:*",
"matchCriteriaId": "240BCFF1-CCCB-4C07-8E2C-7F43F68407FC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:qnap:quts_hero:h5.2.0.2789:build_20240607:*:*:*:*:*:*",
"matchCriteriaId": "D3AF7276-77E0-474A-B10F-AC15BC5FCF00",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A link following vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to traverse the file system to unintended locations.\n\nWe have already fixed the vulnerability in the following versions:\nQTS 5.1.8.2823 build 20240712 and later\nQTS 5.2.0.2802 build 20240620 and later\nQuTS hero h5.1.8.2823 build 20240712 and later\nQuTS hero h5.2.0.2802 build 20240620 and later"
},
{
"lang": "es",
"value": "Se ha informado de una vulnerabilidad de seguimiento de enlaces que afecta a varias versiones del sistema operativo QNAP. Si se explota, la vulnerabilidad podr\u00eda permitir a atacantes remotos que hayan obtenido acceso de usuario atravesar el sistema de archivos hasta ubicaciones no deseadas. Ya hemos corregido la vulnerabilidad en las siguientes versiones: QTS 5.1.8.2823, compilaci\u00f3n 20240712 y posteriores QTS 5.2.0.2802, compilaci\u00f3n 20240620 y posteriores QuTS hero h5.1.8.2823, compilaci\u00f3n 20240712 y posteriores QuTS hero h5.2.0.2802, compilaci\u00f3n 20240620 y posteriores"
}
],
"id": "CVE-2024-53691",
"lastModified": "2025-09-23T14:20:36.830",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
],
"cvssMetricV40": [
{
"cvssData": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"availabilityRequirement": "NOT_DEFINED",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityRequirement": "NOT_DEFINED",
"exploitMaturity": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"source": "security@qnapsecurity.com.tw",
"type": "Secondary"
}
]
},
"published": "2024-12-06T17:15:10.520",
"references": [
{
"source": "security@qnapsecurity.com.tw",
"tags": [
"Vendor Advisory"
],
"url": "https://www.qnap.com/en/security-advisory/qsa-24-28"
}
],
"sourceIdentifier": "security@qnapsecurity.com.tw",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-59"
}
],
"source": "security@qnapsecurity.com.tw",
"type": "Secondary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…