Networking OS
- QNE Network
- QSS
- QuRouter

Surveillance & Smart Video

Personal and Home NAS
- TS-216G NEW
- TS-462
- TS-262
- TS-433
- View All
Small and Midsize Business
- TVS-h874T
- TVS-h674T
- TBS-h574TX
- TS-AI642
- View All
Enterprise NAS
All-Flash NAS
2.5GbE NAS + Switch Bundle Pack
Storage Accessories
Resources

QNAP Cloud
- myQNAPcloud Storage for NAS Backup
- myQNAPcloud Storage as Cloud Drive
Cloud NAS
- QuTScloud for Public Cloud
- QuTScloud for Private Cloud
Cloud Applications

Direct Attached Storage (PC/Workstations)
Accessories
Resources
- Choose Ideal External Drive RAID Storage for Your Mac/PC

QSW 2.5GbE Switches
QSW 10GbE Switches
QSW Full 10GbE Switches
PoE Switches
QSW Managed Switches
QSW Unmanaged Switches
QSW Industrial-grade Switches
- QSW-IM1200-8C
- View All
QSW 25GbE Switches
- QSW-M5216-1T
- View All
QSW 100GbE Switches
- QSW-M7308R-4X
QGD Smart Edge Switches
- QGD-1602
- QGD-1600
- QGD-1602P
- QGD-1600P
- View All
Resources
- Product Comparison

SD-WAN Router
Wi-Fi 6 SD-WAN Router
- QHora-301W
- View All
Wired SD-WAN Router
Resources

Intel x86 Smart Edge Switch
Smart Edge Switch Series
- Guardian Smart Edge Switches

ADRA NDR Cybersecurity Appliances
- QGD-1600
- QGD-1602
- QGD-1602P
- QGD-1600P
- View All
NDR Cybersecurity Appliance Series
- Guardian NDR Cybersecurity Appliance

QuCPE Network Virtualization Premise Equipment
Virtualized IT Room Solutions
- Software-defined Platform Total Solution
- AMIZcloud Management Platform
More Apps
- QNE Application Store

Add network ports
Add Wi-Fi connectivity
- QWA-AC2600
- View All
Wake on Lan Device
- QWU-100

Connect storage expansion units
Expand my storage
Add network ports
Add Wi-Fi connectivity
- QWA-AC2600
- View All
Customize drive usage
- QDA-UMP4
- QDA-SA3
- QDA-U2MP
- QDA-A2AR
- View All
Resources
- Choose Accessories

QVR Pro Appliances
- QVP-21C
- QVP-41C
- QVP-63B
- QVP-85B
- Product Comparison
- View All
Smart Video Surveillance System
- QVR Surveillance Solution
Resources

Smart Video Products
- KoiBox
- KoiMeeter

QTS

QTS is the operating system for entry- and mid-level QNAP NAS. WIth Linux and ext4, QTS enables reliable storage for everyone with versatile value-added features and apps, such as snapshots, Plex media servers, and easy access of your personal cloud.

System

Applications

Backup and Data Protection
Virtualization
Storage Management
Productivity
IT Management
Multimedia
Cloud
- HybridMount
- Qmiix
- QuTScloud
- QuObjects
- VJBOD Cloud
Surveillance & Smart Video
Security
Utilities and Mobile
- Client Utilities
- Mobile Apps

QuTS hero

QuTS hero is the operating system for high-end and enterprise QNAP NAS models. With Linux and ZFS, QuTS hero supports advanced data reduction technologies for further driving down costs and increasing reliablility of SSD (all-flash) storage.

System

Applications

Backup and Data Protection
Virtualization
Storage Management
Productivity
IT Management
Cloud
- QuTScloud
- HybridMount
- VJBOD Cloud
- QuObjects
- Qmiix
Surveillance & Smart Video
- QVR Elite
- KoiMeeter
Security
Utilities and Mobile
- Client Utilities
- Mobile Apps

QuTScloud

QuTScloud is the operating system for QNAP Cloud NAS virtual appliances. With the possibility of on-premises and cloud deployment, QuTScloud enables optimized cloud data usage and flexible resource allocation at a predictable monthly cost.

System

Applications

Backup and Data Protection
Virtualization
- Container Station
Storage Management
- Overview
Productivity
IT Management
- Notification Center
- Q’center
Multimedia

QES

QES is the operating system for dual-controller QNAP NAS models. With FreeBSD and ZFS, QES is flash-optimized, capable of driving outstanding performance for all-flash storage arrays.

System

Product

Resources

QNE Network

QNE Network is the operating system for QuCPE, QNAP's universal customer premises equipment series. Run virtual network functions, freely configure software-defined networks, and enjoy benefits such as lowered costs and reduced management efforts.

System

Applications

Security
- pfSense
- QuFirewall
- QVPN
Cloud
- AMIZcloud
IT Management
- HybridMount
SD-WAN
- QuWAN
- QuWAN Orchestrator
Mobile Apps
- Mobile Apps

QSS

QNAP Switch System (QSS) is the configuration interface for QNAP's managed switch series. Enable management functions such as link aggregation, VLAN, and RSTP, to take care of your network topology with ease.

System

QSS Overview

QuRouter

QNAP’s QuRouter OS simplifies managing high-speed and high-coverage LAN/WAN. With NAT, VPN, security, and QuWAN SD-WAN, network management is made easier and remote connections more secure.

System

Applications

Security
- QVPN
SD-WAN
- QuWAN
- QuWAN Orchestrator
Mobile Apps
- Mobile Apps

QVR Surveillancee

QVR Surveillance is QNAP’s network video recorder software solution. It offers subscription-based QVR Elite and perpetual QVR Pro, and can be used with a series of apps, such as face recognition and door access control for a wider range of scenarios.

System

Applications

Resources

QVR Face

QVR Face is a smart facial recognition solution featuring real-time live streaming video analytics from connected cameras. It can be integrated into multiple scenarios to provide intelligent attendance management, door access control management, VIP welcome systems and smart retail services.

System

QVR Face

Applications

QVR DoorAccess

Resources

KoiMeeter

QNAP smart video solutions provides integrated intelligent packages such as video conferencing and smart retail, boosting productivity for individuals and businesses.

Video Conferencing

KoiMeeter

Smart Retail

KoiRetail

Buy from QNAP
Global Distributors

About Us
Legal
- Terms of Use
- Privacy Notice

Security ID : QSA-23-25

Vulnerability in Legacy QTS

Release date : September 22, 2023
CVE identifier : CVE-2023-23363
Affected products: QTS 4.3.6, 4.3.4, 4.3.3, 4.2.6

Severity

High

Status

Resolved

Summary

A buffer copy without checking size of input vulnerability has been reported to affect certain legacy versions of QTS. If exploited, the vulnerability could allow clients to execute code via unspecified vectors.

We have already fixed the vulnerability in the following versions:

QTS 4.3.6.2441 build 20230621 and later
QTS 4.3.4.2451 build 20230621 and later
QTS 4.3.3.2420 build 20230621 and later
QTS 4.2.6 build 20230621 and later

QTS versions 4.4.x, 4.5.x, and 5.x are not affected. QuTS hero is also not affected.

Recommendation

To secure your device, we recommend regularly updating your system to the latest version to benefit from vulnerability fixes. You can check the product support status to see the latest updates available to your NAS model.

Updating QTS

Log in to QTS as an administrator.
Go to Control Panel > System > Firmware Update.
Under Live Update, click Check for Update.
The system downloads and installs the latest available update.

Tip: You can also download the update from the QNAP website. Go to Support > Download Center and then perform a manual update for your specific device.

Attachment

CVE-2023-23363.json

Acknowledgements: H4lo

Revision History:
V1.0 (September 22, 2023) - Published