Security Updates


Articles Get Updated Regularly - Get an alert every time something gets added to this page!


 

QNAP NAS Vulnerabilities and Exploits [OPEN πŸ”—]

Stack Buffer Overflow Vulnerabilities in QTS, QuTS hero, and QuTScloud Fri, 10 Sep Link
Stack Buffer Overflow Vulnerabilities in QTS, QuTS hero, and QuTScloud Stack Buffer Overflow in QUSBCam2 Fri, 10 Sep Link
Stack Buffer Overflow in QUSBCam2 Stack-Based Buffer Overflow Vulnerabilities in NVR Storage Expansion Fri, 10 Sep Link
Stack-Based Buffer Overflow Vulnerabilities in NVR Storage Expansion Insufficiently Protected Credentials in QSW-M2116P-2T2S and QuNetSwitch Fri, 10 Sep Link
Insufficiently Protected Credentials in QSW-M2116P-2T2S and QuNetSwitch Insufficient HTTP Security Headers in QTS, QuTS hero, and QuTScloud Fri, 10 Sep Link
Insufficient HTTP Security Headers in QTS, QuTS hero, and QuTScloud Out-of-Bounds Read in OpenSSL Mon, 30 Aug Link
Out-of-Bounds Read in OpenSSL Out-of-Bounds Vulnerabilities in OpenSSL Mon, 30 Aug Link
Out-of-Bounds Vulnerabilities in OpenSSL Improper Access Control in Legacy HBS 3 (Hybrid Backup Sync) Tue, 06 Jul Link
Improper Access Control in Legacy HBS 3 (Hybrid Backup Sync) Multiple Command Injection Vulnerabilities in QTS Thu, 01 Jul Link
Multiple Command Injection Vulnerabilities in QTS Stored XSS in QuLog Center Thu, 01 Jul Link
Stored XSS in QuLog Center Stored XSS in Qcenter Thu, 01 Jul +0800 XSS in QTS Thu, 01 Jul Link
XSS in QTS DNSpooq Vulnerabilities in QTS Thu, 01 Jul Link
DNSpooq Vulnerabilities in QTS Command Injection in QTS Thu, 24 Jun Link
Command Injection in QTS Insecure Storage of Sensitive Information in myQNAPcloud Link Wed, 16 Jun Link
Insecure Storage of Sensitive Information in myQNAPcloud Link SMB Out-of-Bounds Read in QTS Wed, 16 Jun Link
SMB Out-of-Bounds Read in QTS Out-of-Bounds Read in QSS Fri, 11 Jun Link
Out-of-Bounds Read in QSS Inclusion of Sensitive Information in QSS Fri, 11 Jun Link
Inclusion of Sensitive Information in QSS Improper Access Control in Helpdesk Fri, 11 Jun Link
Improper Access Control in Helpdesk Post-Authentication Reflected XSS in Qcenter Thu, 03 Jun Link
Post-Authentication Reflected XSS in Qcenter

 

SYNOLOGY NAS Vulnerabilities and Exploits [OPEN πŸ”—]

Synology-SA-21:26 Photo Station Important Resolved 2021-09-07 10:03:01 UTC+8
Synology-SA-21:25 DSM Moderate Ongoing 2021-09-01 14:04:01 UTC+8
Synology-SA-21:24 OpenSSL Important Ongoing 2021-08-27 23:27:28 UTC+8
Synology-SA-21:23 ISC BIND Not affected Resolved 2021-08-20 10:43:23 UTC+8
Synology-SA-21:22 DSM Important Ongoing 2021-09-01 14:08:26 UTC+8
Synology-SA-21:21 Audio Station Important Resolved 2021-06-16 16:05:29 UTC+8
Synology-SA-21:20 FragAttacks Moderate Ongoing 2021-05-12 18:26:08 UTC+8
Synology-SA-21:19 SRM Important Resolved 2021-05-11 14:23:32 UTC+8
Synology-SA-21:18 Hyper Backup Moderate Resolved 2021-05-04 13:37:52 UTC+8
Synology-SA-21:17 Samba Moderate Ongoing 2021-05-06 11:28:17 UTC+8
Synology-SA-21:16 ISC BIND Moderate Ongoing 2021-05-03 10:34:51 UTC+8
Synology-SA-21:15 Antivirus Essential Important Resolved 2021-04-28 08:12:48 UTC+8
Synology-SA-21:14 OpenSSL Not affected Resolved 2021-03-29 08:56:36 UTC+8
Synology-SA-21:13 Samba AD DC Important Resolved 2021-07-08 17:14:55 UTC+8
Synology-SA-21:12 Synology Calendar Moderate Resolved 2021-06-19 10:53:03 UTC+8
Synology-SA-21:11 Download Station Important Resolved 2021-06-19 11:15:17 UTC+8
Synology-SA-21:10 Media Server Moderate Resolved 2021-06-19 10:55:28 UTC+8
Synology-SA-21:09 WebDAV Server Moderate Resolved 2021-02-23 11:18:19 UTC+8
Synology-SA-21:08 Docker Low Resolved 2021-06-13 11:21:28 UTC+8
Synology-SA-21:07 Synology Directory Server Moderate Resolved 2021-02-23 11:17:51 UTC+8

 

ASUSTOR NAS Vulnerabilities and Exploits [OPEN πŸ”—]


05 24 2021 Security advisory for FragAttack
03 29 2021 ASUS ASMB8-iKVM and ASMB9-iKVM Firmware Security Update for ASUS Server Products
03 24 2021 ASUS SMM Privilege Security Update (CVE-2021-26943) for ASUS SKL Notebook PCs
03 09 2021 Security advisory for DNSpooq
07 10 2020 ASUS ScreenPad 2 Upgrade Tool Security Update (CVE-2020-15009) for ASUS PCs with ScreenPad 1.0 (UX450FDX, UX550GDX and UX550GEX)
04 14 2020 ASUS Update Regarding Mitigation for Known Intel CPU Vulnerabilities
04 09 2020 ASUS Device Activation Security Update (CVE-2020-10649) for ASUS Notebook PCs
03 18 2020 Security Advisory for CVE-2019-15126 (Kr00k)
03 09 2020 Security Notice for CVE-2018-18287
02 14 2020 ROG Gaming Center Package Security Update
11 26 2019 New firmware update for wireless router RT-AC1750_B1 RT-AC1900 RT-AC1900P RT-AC1900U RT-AC86U RT-AC2900 RT-AC3100 RT-AC3200 RT-AC51U RT-AC51U+ RT-AC52U B1 RT-AC66U RT-AC66U B1 RT-AC66U_WHITE RT-AC67U RT-AC68P RT-AC68R RT-AC68RF RT-AC68RW RT-AC68U RT-AC68U 2 Pack RT-AC68U_WHITE RT-AC68W RT-AC750 RT-AC87R RT-AC87U RT-AC87W RT-N66U RT-N66U_C1 RT-N14U
11 15 2019 Important information about ASUSWRT security:
10 21 2019 ATK Package Security Update (CVE-2019-19235) for ASUS Notebook PCs
06 14 2019 BIOS Update Announcement for ASUS Notebook PCs
05 16 2019 New firmware update for wireless router RT-AC1750_B1 RT-AC1900 RT-AC1900P RT-AC1900U RT-AC2900 RT-AC3100 RT-AC3200 RT-AC51U RT-AC5300 RT-AC56S RT-AC56U RT-AC66U RT-AC66U B1 RT-AC66U_WHITE RT-AC67U RT-AC68P RT-AC68R RT-AC68RF RT-AC68RW RT-AC68U RT-AC68U 2 Pack RT-AC68U_WHITE RT-AC68W RT-AC750 RT-AC86U RT-AC87R RT-AC87U RT-AC87W RT-AC88U RT-N18U RT-N66U RT-N66U_C1
05 02 2019 Latest software announcement for ZenFone devices
08 14 2018 Security advisory for OpenVPN server
08 07 2018 Latest software announcement for ZenFone ZenPad devices
06 08 2018 Security advisory for VPNFilter malware
04 03 2018 Security Vulnerability Notice (CVE-2018-5999, CVE-2018-6000) for ASUS routers
10 31 2017 Update on security advisory for the vulnerability of WPA2 protocol
10 18 2017 Security advisory for the vulnerabilities of WPA2 protocol
2021 & 8711;
2020 & 8711;
2019 & 8711;
2018 & 8711;
2017 & 8711;
2016 & 8711;