Skip to main content

Qvr

9 CVEs product

Monthly

CVE-2025-52856 CRITICAL Act Now

An improper authentication vulnerability has been reported to affect VioStor. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Qvr
NVD
CVSS 4.0
9.3
EPSS
0.4%
CVE-2023-23355 HIGH This Week

An OS command injection vulnerability has been reported to affect QNAP operating systems. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Qnap Command Injection Qvr Qts Quts Hero +8
NVD
CVSS 3.1
7.2
EPSS
1.2%
CVE-2022-27588 CRITICAL Act Now

We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401 and later. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Qvr
NVD
CVSS 3.1
9.8
EPSS
1.3%
CVE-2021-38686 HIGH This Week

An improper authentication vulnerability has been reported to affect QNAP device, VioStor. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Authentication Bypass Qvr
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2021-38685 CRITICAL Act Now

A command injection vulnerability has been reported to affect QNAP device, VioStor. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Command Injection Qvr
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2021-34352 CRITICAL PATCH Act Now

A command injection vulnerability has been reported to affect QNAP device running QVR. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

Qnap Command Injection Qvr
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2021-34351 CRITICAL Act Now

A command injection vulnerability has been reported to affect QNAP device running QVR. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Command Injection Qvr
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2021-34349 HIGH This Week

A command injection vulnerability has been reported to affect QNAP device running QVR. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Qnap Command Injection Qvr
NVD
CVSS 3.1
7.2
EPSS
1.5%
CVE-2021-34348 CRITICAL Act Now

A command injection vulnerability has been reported to affect QNAP device running QVR. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Command Injection Qvr
NVD
CVSS 3.1
9.8
EPSS
1.5%
EPSS 0% CVSS 9.3
CRITICAL Act Now

An improper authentication vulnerability has been reported to affect VioStor. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Qvr
NVD
EPSS 1% CVSS 7.2
HIGH This Week

An OS command injection vulnerability has been reported to affect QNAP operating systems. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Qnap Command Injection Qvr +10
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401 and later. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Qvr
NVD
EPSS 1% CVSS 8.8
HIGH This Week

An improper authentication vulnerability has been reported to affect QNAP device, VioStor. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Authentication Bypass Qvr
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

A command injection vulnerability has been reported to affect QNAP device, VioStor. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Command Injection Qvr
NVD
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

A command injection vulnerability has been reported to affect QNAP device running QVR. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

Qnap Command Injection Qvr
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

A command injection vulnerability has been reported to affect QNAP device running QVR. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Command Injection Qvr
NVD
EPSS 1% CVSS 7.2
HIGH This Week

A command injection vulnerability has been reported to affect QNAP device running QVR. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Qnap Command Injection Qvr
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

A command injection vulnerability has been reported to affect QNAP device running QVR. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Command Injection Qvr
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy