Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
QNAP TS-469U with firmware 4.0.7 Build 20140410, TS-459U, TS-EC1679U-RP, and SS-839 use world-readable permissions for /etc/config/shadow, which allows local users to obtain usernames and hashed passwords by reading the password.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
QNAP Systems QNAP TS-469U 安全漏洞
Vulnerability Description
QNAP TS-469U、TS-459U、TS-EC1679U-RP和SS-839都是威联通(QNAP Systems)公司的NAS储存服务器。 使用4.0.7 Build 20140410版本固件的QNAP Systems QNAP TS-469U、TS-459U、TS-EC1679U-RP、SS-839中存在安全漏洞,该漏洞源于程序对/etc/config/shadow URL使用全局可读权限。本地攻击者可通过读取密码利用该漏洞获取用户名和密码散列。
CVSS Information
N/A
Vulnerability Type
N/A