How severe is CVE-2022-27597?

This vulnerability has a severity rating of LOW with a CVSS score of 2.7 out of 10.

What type of vulnerability is CVE-2022-27597?

This is classified as CWE-125, which is a common weakness in software security.

CVE-2022-27597 - LOW Severity | CVSS 2.7

Vulnerability Description

A vulnerability has been reported to affect QNAP operating systems. If exploited, the out-of-bounds read vulnerability allows remote authenticated administrators to get secret values. The vulnerability affects the following QNAP operating systems: QTS, QuTS hero, QuTScloud, QVP (QVR Pro appliances) We have already fixed the vulnerability in the following versions: QTS 5.0.1.2346 build 20230322 and later QuTS hero h5.0.1.2348 build 20230324 and later

Related Vulnerabilities

CVE-2019-15662

LOW

CVSS:2.7(Low)

An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120444 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an arbi...

CWE-1252019

CVE-2019-15663

LOW

CVSS:2.7(Low)

An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120404 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an out-...

CWE-1252019

CVE-2019-15664

LOW

CVSS:2.7(Low)

CWE-1252019

CVE-2020-11040

LOW

CVSS:2.7(Low)

In FreeRDP less than or equal to 2.0.0, there is an out-of-bound data read from memory in clear_decompress_subcode_rlex, visualized on screen as color. This has been patched in 2.1.0.

CWE-1252020

CVE-2020-11043

LOW

CVSS:2.7(Low)

In FreeRDP less than or equal to 2.0.0, there is an out-of-bounds read in rfx_process_message_tileset. Invalid data fed to RFX decoder results in garbage on screen (as colors). This has been patched i...

CWE-1252020

CVE-2022-27598

LOW

CVSS:2.7(Low)

CWE-1252022