Lucene search
K

Qnap QTS Improper Input Validation (CVE-2017-10700)

🗓️ 16 Oct 2024 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 17 Views

Qnap QTS Improper Input Validation vulnerability in medialibrary component allows remote attackers to execute arbitrary commands as root user

Related
Refs
Code
ReporterTitlePublishedViews
Family
CNVD
QNAP NAS medialibrary component remote code execution vulnerability
20 Sep 201700:00
cnvd
CVE
CVE-2017-10700
19 Sep 201715:00
cve
Cvelist
CVE-2017-10700
19 Sep 201715:00
cvelist
EUVD
EUVD-2017-2346
7 Oct 202500:30
euvd
NVD
CVE-2017-10700
19 Sep 201715:29
nvd
OpenVAS
QNAP QTS 4.2.x < 4.2.6 build 20170905, 4.3.x < 4.3.3 build 20170727 Command Injection Vulnerability
13 Dec 201700:00
openvas
OSV
CVE-2017-10700
19 Sep 201715:29
osv
Prion
Design/Logic Flaw
19 Sep 201715:29
prion
SUSE CVE
SUSE CVE-2017-10700
15 Feb 202304:43
susecve
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(502556);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/10/17");

  script_cve_id("CVE-2017-10700");

  script_name(english:"Qnap QTS Improper Input Validation (CVE-2017-10700)");

  script_set_attribute(attribute:"synopsis", value:
"The remote OT asset is affected by a vulnerability.");
  script_set_attribute(attribute:"description", value:
"In the medialibrary component in QNAP NAS 4.3.3.0229, an un-
authenticated, remote attacker can execute arbitrary system commands
as the root user of the NAS application.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.");
  # https://www.lateralsecurity.com/downloads/Lateral_Security-Advisory-QNAP_QTS_CVE-2017-10700.pdf
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?54e680b2");
  script_set_attribute(attribute:"see_also", value:"https://www.qnap.com/en/support/con_show.php?cid=128");
  script_set_attribute(attribute:"solution", value:
"Refer to the vendor advisory.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-10700");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(20);

  script_set_attribute(attribute:"vuln_publication_date", value:"2017/09/19");
  script_set_attribute(attribute:"patch_publication_date", value:"2017/09/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/10/16");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:qnap:qts:4.3.3.0229");
  script_set_attribute(attribute:"generated_plugin", value:"former");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Tenable.ot");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("tenable_ot_api_integration.nasl");
  script_require_keys("Tenable.ot/Qnap");

  exit(0);
}


include('tenable_ot_cve_funcs.inc');

get_kb_item_or_exit('Tenable.ot/Qnap');

var asset = tenable_ot::assets::get(vendor:'Qnap');

var vuln_cpes = {
    "cpe:/o:qnap:qts:4.3.3.0229" :
        {"versionEndIncluding" : "4.3.3.0229", "versionStartIncluding" : "4.3.3.0229", "family" : "QTS"}
};

tenable_ot::cve::compare_and_report(asset:asset, cpes:vuln_cpes, severity:SECURITY_HOLE);

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Oct 2024 00:00Current
8.7High risk
Vulners AI Score8.7
CVSS 39.8
CVSS 210
EPSS0.0234
17