QNAP NAS Remote Code Execution Vulnerability

Release Date: 6 Nov 2023 3978 Views

RISK: Medium Risk

TYPE: Servers - Other Servers

TYPE: Other Servers

A vulnerability was identified in QNAP NAS. A remote attacker can exploit this vulnerability to trigger remote code execution on the targeted system.

Impact

Remote Code Execution

System / Technologies affected

QTS 4.2.x
QTS 4.3.3
QTS 4.3.4
QTS 4.3.6
QTS 4.5.x
QTS 5.0.x
QTS 5.1.x
QuTS hero h4.5.x
QuTS hero h5.0.x
QuTScloud c5.0.x

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:
https://www.qnap.com/en/security-advisory/QSA-23-31
https://www.qnap.com/en/security-advisory/QSA-23-35

Vulnerability Identifier

Source

QNAP

Related Link

Related Tags

Share with

Cisco Products Multiple Vulnerabilities

3 Nov 2023 4679 Views

Microsoft Edge Multiple Vulnerabilities

6 Nov 2023 4782 Views