Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
QNAP Systems QTS 目录遍历漏洞
Vulnerability Description
QNAP QTS是中国威联通(QNAP Systems)公司的一套Turbo NAS作业系统。该系统可提供档案储存、管理、备份,多媒体应用及安全监控等功能。 QNAP Systems QTS 4.1.4 build 0910之前版本和4.2.0 RC2 build 0910之前4.2.x版本中存在目录遍历漏洞。当程序启用AFP时,远程攻击者可通过访问OS X用户或guest账户利用该漏洞读取或写入任意文件。
CVSS Information
N/A
Vulnerability Type
N/A