Skip to main content

QNAP NAS Remote Code Execution Vulnerability

Release Date: 12 Jan 2021 4489 Views

RISK: Medium Risk

TYPE: Servers - Other Servers

TYPE: Other Servers

A vulnerability was identified in QNAP NAS, a remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.


Impact

  • Remote Code Execution

System / Technologies affected

  • QTS version prior to 4.5.1.1456 build 20201015
  • QuTS hero version prior to h4.5.1.1472 build 20201031

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

 


Vulnerability Identifier


Source


Related Link