CVE-2018-19945 Improper Limitation of a Pathname to a Restricted Directory in QTS

2020-12-3000:00:00

CWE-284

CWE-20

CWE-73

CWE-22

qnap

www.cve.org

9.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.1%

JSON

A vulnerability has been reported to affect earlier QNAP devices running QTS 4.3.4 to 4.3.6. Caused by improper limitations of a pathname to a restricted directory, this vulnerability allows for renaming arbitrary files on the target system, if exploited. QNAP have already fixed this vulnerability in the following versions: QTS 4.3.6.0895 build 20190328 (and later) QTS 4.3.4.0899 build 20190322 (and later) This issue does not affect QTS 4.4.x or QTS 4.5.x.

CNA Affected

[
  {
    "platforms": [
      "build 20190328"
    ],
    "product": "QTS",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "4.3.6.0895",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "platforms": [
      "build 20190322"
    ],
    "product": "QTS",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "4.3.4.0899",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "QTS",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "status": "unaffected",
        "version": "4.5.x"
      },
      {
        "status": "unaffected",
        "version": "4.4.x"
      }
    ]
  }
]

References

www.qnap.com/zh-tw/security-advisory/qsa-20-21