QNAP QTS/QuTS Path Traversal (<v5.1.5.2645) Allows Auth Admin File Read
CVE-2023-45026 Published on February 2, 2024

QTS, QuTS hero, QuTScloud
A path traversal vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to read the contents of unexpected files and expose sensitive data via a network. We have already fixed the vulnerability in the following versions: QTS 5.1.5.2645 build 20240116 and later QuTS hero h5.1.5.2647 build 20240118 and later QuTScloud c5.1.5.2651 and later

NVD

Vulnerability Analysis

CVE-2023-45026 is exploitable with network access, and requires user privileges. This vulnerability is considered to have a low attack complexity. Public availability of a proof of concept (POC) exploit exists for CVE-2023-45026. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality, with no impact on integrity and availability.

Attack Vector:
NETWORK
Attack Complexity:
LOW
Privileges Required:
HIGH
User Interaction:
NONE
Scope:
CHANGED
Confidentiality Impact:
NONE
Integrity Impact:
LOW
Availability Impact:
LOW

Weakness Type

What is a Directory traversal Vulnerability?

The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

CVE-2023-45026 has been classified to as a Directory traversal vulnerability or weakness.


Products Associated with CVE-2023-45026

Want to know whenever a new CVE is published for QNAP products? stack.watch will email you.

QNAP Qts
 
QNAP Quts Hero
 
QNAP Qutscloud
 

Affected Versions

QNAP Systems Inc. QTS: QNAP Systems Inc. QuTS hero: QNAP Systems Inc. QuTScloud:

Exploit Probability

EPSS
0.06%
Percentile
17.47%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.