CVE-2017-13071

2017-11-2217:00:00

qnap

www.cve.org

AI Score

9.6

Confidence

High

EPSS

0.005

Percentile

77.4%

JSON

QNAP has already patched this vulnerability. This security concern allows a remote attacker to run arbitrary commands on the QNAP Video Station 5.1.3 (for QTS 4.3.3), 5.2.0 (for QTS 4.3.4), and earlier.

CNA Affected

[
  {
    "product": "Video Station",
    "vendor": "QNAP",
    "versions": [
      {
        "status": "affected",
        "version": "Video Station 5.1.3 (for QTS 4.3.3), 5. 2.0 (for QTS 4.3.4), and earlier"
      }
    ]
  }
]

References

www.qnap.com/zh-tw/security-advisory/nas-201711-21