Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Command Injection vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions could allow remote attackers to run arbitrary commands on the NAS.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
QNAP QTS 命令注入漏洞
Vulnerability Description
QNAP QTS是中国威联通(QNAP Systems)公司的一套Turbo NAS作业系统。该系统可提供档案储存、管理、备份,多媒体应用及安全监控等功能。 QNAP QTS中存在命令注入漏洞。远程攻击者可利用该漏洞在NAS上运行任意命令。以下版本受到影响:QNAP QTS 4.3.5 build 20181013及之前版本,4.3.4 build 20181008及之前版本,4.3.3 build 20180829及之前版本,4.2.6 build 20180829及之前版本。
CVSS Information
N/A
Vulnerability Type
N/A