CVE-2024-53699

7.2 HIGH

📋 TL;DR

An out-of-bounds write vulnerability in QNAP operating systems could allow remote attackers with administrator access to modify or corrupt memory. This affects QTS and QuTS hero users running vulnerable versions. Successful exploitation could lead to system compromise.

💻 Affected Systems

Products:

QTS
QuTS hero

Versions: Versions before QTS 5.2.3.3006 build 20250108 and QuTS hero h5.2.3.3006 build 20250108

Operating Systems: QNAP NAS operating systems

Default Config Vulnerable: ⚠️ Yes

Notes: Requires administrator access for exploitation

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system takeover, data theft, or ransomware deployment

🟠

Likely Case

System instability, service disruption, or privilege escalation within the compromised system

🟢

If Mitigated

Limited impact due to network segmentation and proper access controls restricting administrator access

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires administrator credentials, making exploitation more difficult but still dangerous if credentials are compromised

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: QTS 5.2.3.3006 build 20250108 and later, QuTS hero h5.2.3.3006 build 20250108 and later

Vendor Advisory: https://www.qnap.com/en/security-advisory/qsa-24-54

Restart Required: No

Instructions:

1. Log into QNAP NAS admin interface
2. Navigate to Control Panel > System > Firmware Update
3. Check for updates and install the latest version
4. Verify the version matches or exceeds the patched versions

🔧 Temporary Workarounds

Restrict Administrator Access

all

Limit administrator accounts to only trusted users and implement strong authentication

Network Segmentation

all

Isolate QNAP devices from internet and restrict access to trusted networks only

🧯 If You Can't Patch

Implement strict network access controls to prevent remote administrator access
Enable multi-factor authentication for all administrator accounts

🔍 How to Verify

Check if Vulnerable:

Check current firmware version in Control Panel > System > Firmware Update

Check Version:

ssh admin@qnap-ip 'cat /etc/config/uLinux.conf | grep version'

Verify Fix Applied:

Verify firmware version is QTS 5.2.3.3006 build 20250108 or later, or QuTS hero h5.2.3.3006 build 20250108 or later

📡 Detection & Monitoring

Log Indicators:

Unusual administrator login attempts
Memory access violations in system logs
Unexpected process crashes

Network Indicators:

Unusual outbound connections from QNAP device
Suspicious administrator login patterns

SIEM Query:

source="qnap" AND (event_type="authentication" AND user="admin") OR (event_type="system" AND message="*memory*" OR "*crash*")

📊 Metadata

CVE ID: CVE-2024-53699

CVSS v3 Score: 7.2 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-787

EPSS Score: 0.15% exploit probability (35.7th percentile)

Published: March 7, 2025

Last Updated: September 23, 2025

🔗 References

https://www.qnap.com/en/security-advisory/qsa-24-54 Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Qts by Qnap

Qts by Qnap

Qts by Qnap

Qts by Qnap

Qts by Qnap

Qts by Qnap

Qts by Qnap

Qts by Qnap

Qts by Qnap

Quts Hero by Qnap

Quts Hero by Qnap

Quts Hero by Qnap

Quts Hero by Qnap

Quts Hero by Qnap

Quts Hero by Qnap

Quts Hero by Qnap

Quts Hero by Qnap

Quts Hero by Qnap

Quts Hero by Qnap

⚠️ Risk & Real-World Impact

Worst Case

Likely Case

If Mitigated

🎯 Exploit Status

🛠️ Fix & Mitigation

✅ Official Fix

Instructions:

🔧 Temporary Workarounds

Restrict Administrator Access

Network Segmentation

🧯 If You Can't Patch

🔍 How to Verify

Check if Vulnerable:

Check Version:

Verify Fix Applied:

📡 Detection & Monitoring

Log Indicators:

Network Indicators:

SIEM Query:

📊 Metadata

🔗 References

📤 Share & Export

🔗 Related Vulnerabilities