{"id":32282,"date":"2023-11-13T19:49:12","date_gmt":"2023-11-13T18:49:12","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=32282"},"modified":"2023-11-13T19:49:12","modified_gmt":"2023-11-13T18:49:12","slug":"qnap-warns-of-vulnerabilities-cve-2023-23368-cve-2023-23369-in-qts","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2023\/11\/13\/qnap-warns-of-vulnerabilities-cve-2023-23368-cve-2023-23369-in-qts\/","title":{"rendered":"QNAP warns of vulnerabilities CVE-2023-23368, CVE-2023-23369 in QTS"},"content":{"rendered":"<p><img decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline;\" title=\"Sicherheit (Pexels, allgemeine Nutzung)\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2021\/04\/Sicherheit_klein.jpg\" alt=\"Sicherheit (Pexels, allgemeine Nutzung)\" width=\"200\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2023\/11\/13\/qnap-warnt-vor-schwachstellen-cve-2023-23368-cve-2023-23369-in-qts\/\" target=\"_blank\" rel=\"noopener\">German<\/a>]Catching up from last week &#8211; the NAS manufacturer QNAP has published a security warning for its QTS operating system for NAS stations. The critical vulnerability CVE-2023-23368 (CVSS Index 9.8) allows remote execution of commands in older QTS versions. Another vulnerability CVE-2023-23369 (CVSS Index 9.0) also allows remote attacks. Updates are available to close the vulnerability. Here is an overview of this issue.<\/p>\n<p><!--more--><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg05.met.vgwort.de\/na\/c935a6ccfd9041b886074e64fbbeb280\" alt=\"\" width=\"1\" height=\"1\" \/>The security alert <a href=\"https:\/\/www.qnap.com\/en\/security-advisory\/qsa-23-31\" target=\"_blank\" rel=\"noopener\">QSA-23-31<\/a> is already dated November 4, 2023 and is titled Vulnerability in QTS, QuTS hero, and QuTScloud. CVE-2023-23368 is a command injection vulnerability that affects multiple QNAP operating system versions. Remote attackers can exploit this vulnerability to execute commands over a network. The vulnerability is classified as critical with a CVSS index of 9.8 (out of max. 10.0). The following operating system versions are affected:<\/p>\n<ul>\n<li>QTS 5.0.x<\/li>\n<li>QTS 4.5.x<\/li>\n<li>QuTS hero h5.0.x<\/li>\n<li>QuTS hero h4.5.x<\/li>\n<li>QuTScloud c5.0.x<\/li>\n<\/ul>\n<p>The manufacturer QNAP has released the following updates, which close the above vulnerability, among others:<\/p>\n<ul>\n<li>QTS 5.0.1.2376 build 20230421 and later<\/li>\n<li>QTS 4.5.4.2374 build 20230416 and later<\/li>\n<li>QuTS hero h5.0.1.2376 build 20230421 and later<\/li>\n<li>QuTS hero h4.5.4.2374 build 20230417 and later<\/li>\n<li>QuTScloud c5.0.1.2374 and later<\/li>\n<\/ul>\n<p>It is recommended by QNAP to update the software of existing NAS drives with the latest firmware updates to close such vulnerabilities. The procedure is described on the <a href=\"https:\/\/www.qnap.com\/en\/security-advisory\/qsa-23-31\" target=\"_blank\" rel=\"noopener\">QNAP website.<\/a><\/p>\n<p>The colleagues from Bleeping Computer also <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/qnap-warns-of-critical-command-injection-flaws-in-qts-os-apps\/\" target=\"_blank\" rel=\"noopener\">mention<\/a> a second vulnerability CVE-2023-23369, which is documented in the security alert <a href=\"https:\/\/www.qnap.com\/en-uk\/security-advisory\/qsa-23-35\" target=\"_blank\" rel=\"noopener\">QSA-23-35<\/a> dated Nov. 4, 2023. The vulnerability has a CVSS index of 9.0 and can also be exploited remotely. Affected products are:<\/p>\n<ul>\n<li>QTS 5.1.x, 4.3.6, 4.3.4, 4.3.3, 4.2.x;<\/li>\n<li>Multimedia Console 2.1.x, 1.4.x;<\/li>\n<li>Media Streaming Add-on 500.1.x, 500.0.x<\/li>\n<\/ul>\n<p>The vulnerability will be closed by the following software updates:<\/p>\n<ul>\n<li>QTS 5.1.0.2399 build 20230515 and later<\/li>\n<li>QTS 4.3.6.2441 build 20230621 and later<\/li>\n<li>QTS 4.3.4.2451 build 20230621 and later<\/li>\n<li>QTS 4.3.3.2420 build 20230621 and later<\/li>\n<li>QTS 4.2.6 build 20230621 and later<\/li>\n<li>Multimedia Console 2.1.2 (2023\/05\/04) and later<\/li>\n<li>Multimedia Console 1.4.8 (2023\/05\/05) and later<\/li>\n<li>Media Streaming add-on 500.1.1.2 (2023\/06\/12) and later<\/li>\n<li>Media Streaming add-on 500.0.0.11 (2023\/06\/16) and later<\/li>\n<\/ul>\n<p>The update procedure can also be found in the advisory <a href=\"https:\/\/www.qnap.com\/en-uk\/security-advisory\/qsa-23-35\" target=\"_blank\" rel=\"noopener\">QSA-23-35<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]Catching up from last week &#8211; the NAS manufacturer QNAP has published a security warning for its QTS operating system for NAS stations. The critical vulnerability CVE-2023-23368 (CVSS Index 9.8) allows remote execution of commands in older QTS versions. Another &hellip; <a href=\"https:\/\/borncity.com\/win\/2023\/11\/13\/qnap-warns-of-vulnerabilities-cve-2023-23368-cve-2023-23369-in-qts\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[448,580,1547,22],"tags":[949,69],"class_list":["post-32282","post","type-post","status-publish","format-standard","hentry","category-devices","category-security","category-software","category-update","tag-qnap","tag-security"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/32282","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=32282"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/32282\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=32282"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=32282"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=32282"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}