A vulnerability was found in QNAP QTS and QuTS hero 4.5.4.2790 Build 20240605/5.1.3.2578 Build 20231110/5.1.4.2596 Build 20231128. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-21897. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.