Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Hard-coded Password Vulnerability in QES
Vulnerability Description
A hard-coded password vulnerability has been reported to affect earlier versions of QES. If exploited, this vulnerability could allow attackers to log in with a hard-coded password. QNAP has already fixed the issue in QES 2.1.1 Build 20200515 and later.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:H/A:N
Vulnerability Type
使用硬编码的口令
Vulnerability Title
QNAP QES 信任管理问题漏洞
Vulnerability Description
QNAP QES是中国QNAP公司的一款主要应用于管理文件的桌面操作系统。 QES 2.1.1 Build 20200515 之前版本存在信任管理问题漏洞,该漏洞允许攻击者可利用该漏洞使用硬编码密码登录。
CVSS Information
N/A
Vulnerability Type
N/A