Lucene search
QnapCVELIST:CVE-2017-13067HistorySep 01, 2017 - 12:00 a.m.
CVE-2017-13067
2017-09-0100:00:00
qnap
www.cve.org
1
QNAP has patched a remote code execution vulnerability affecting the QTS Media Library in all versions prior to QTS 4.2.6 build 20170905 and QTS 4.3.3.0299 build 20170901. This particular vulnerability allows a remote attacker to execute commands on a QNAP NAS using a transcoding service on port 9251. A remote user does not require any privileges to successfully execute an attack.
CNA Affected
[
{
"product": "QTS Media Libary PRODUCT",
"vendor": "QNAP",
"versions": [
{
"status": "affected",
"version": "prior to 4.2.6 build 20170905"
},
{
"status": "affected",
"version": "prior to 4.3.3.0299 build 20170901"
}
]
}
]References
Related
prion
prion
Remote code execution
2017-09-14 15:29:00
openvas
openvas
QNAP QTS 'Media Library' Command injection Vulnerability
2017-09-19 00:00:00
QNAP NAS 'Media Library' Command Execution Vulnerability
2017-09-01 00:00:00
nvd
nvd
CVE-2017-13067
2017-09-14 15:29:00
CVE-2017-14113
2017-09-14 15:29:00
cve
cve
CVE-2017-13067
2017-09-14 15:29:00
CVE-2017-14113
2017-09-14 15:29:00