CVE-2018-14747

2018-11-2816:00:00

qnap

www.cve.org

8 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

57.7%

JSON

NULL Pointer Dereference vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions could allow remote attackers to crash the NAS media server.

CNA Affected

[
  {
    "product": "QNAP QTS",
    "vendor": "QNAP",
    "versions": [
      {
        "status": "affected",
        "version": "QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions"
      }
    ]
  }
]

References

www.qnap.com/zh-tw/security-advisory/nas-201811-22