CVSS 3.1 Score 7.2 of 10 (high)


Published Dec 8, 2023
Updated: Dec 13, 2023
CWE ID 120


CVE-2023-32968 is a vulnerability that affects several versions of the QNAP operating system. The vulnerability is related to a buffer copy without checking the size of input, which could allow authenticated administrators to execute code via a network. The affected products include QTS build 20230906 and later, QTS build 20230926 and later, QuTS hero h5.0.1.2515 build 20230907 and later, and QuTS hero h5.1.2.2534 build 20230927 and later. To remediate the vulnerability, users should update their systems to the fixed versions mentioned above. The potential danger this vulnerability poses to an organization is high, with a base severity rating of HIGH, an integrity impact of HIGH, and a confidentiality impact of HIGH according to the National Vulnerability Database (NVD).


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-32968 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options