HBS%203%20Hybrid%20Backup%20Sync

HBS 3 Hybrid Backup Sync

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2024-53695

Assigner-QNAP Systems, Inc.

View Details

Assigner-QNAP Systems, Inc.

CVSS Score-6.3||MEDIUM

EPSS-0.12% / 31.37%

7 Day CHG~0.00%

Published-07 Mar, 2025 | 16:13

Updated-07 Mar, 2025 | 17:54

HBS 3 Hybrid Backup Sync

A buffer overflow vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If exploited, the vulnerability could allow remote attackers to modify memory or crash processes. We have already fixed the vulnerability in the following version: HBS 3 Hybrid Backup Sync 25.1.4.952 and later

Vendor-QNAP Systems, Inc.

Product-HBS 3 Hybrid Backup Sync

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE ID-CWE-121

Stack-based Buffer Overflow

CVE-2024-50388

Assigner-QNAP Systems, Inc.

View Details

Assigner-QNAP Systems, Inc.

CVSS Score-9.5||CRITICAL

EPSS-2.33% / 84.19%

7 Day CHG~0.00%

Published-06 Dec, 2024 | 16:35

Updated-06 Dec, 2024 | 19:59

HBS 3 Hybrid Backup Sync

An OS command injection vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If exploited, the vulnerability could allow remote attackers to execute commands. We have already fixed the vulnerability in the following version: HBS 3 Hybrid Backup Sync 25.1.1.673 and later

Vendor-QNAP Systems, Inc.

Product-HBS 3 Hybrid Backup Sync hbs_3

CWE ID-CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')

CWE ID-CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')