Lucene search
K

Qnap QTS Command Injection (CVE-2017-7876)

🗓️ 16 Oct 2024 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 14 Views

Qnap QTS Command Injection vulnerability in Tenable scanner

Related
Refs
Code
ReporterTitlePublishedViews
Family
BDU FSTEC
The vulnerability of the QTS operating system, allowing a perpetrator to execute arbitrary commands
30 Jun 201700:00
bdu_fstec
Circl
CVE-2017-7876
30 Jun 202614:18
circl
CVE
CVE-2017-7876
15 Jun 201720:00
cve
Cvelist
CVE-2017-7876
15 Jun 201720:00
cvelist
EUVD
EUVD-2017-16851
15 Jun 201720:00
euvd
NVD
CVE-2017-7876
15 Jun 201720:29
nvd
OpenVAS
QNAP QTS Command Injection Vulnerability (NAS-201707-12)
16 Jun 201700:00
openvas
OSV
CVE-2017-7876
15 Jun 201720:29
osv
Prion
Command injection
15 Jun 201720:29
prion
VulnCheck KEV
VulnCheck KEV: CVE-2017-7876
18 Sep 202400:00
vulncheck_kev
Rows per page
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(502641);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/11/26");

  script_cve_id("CVE-2017-7876");

  script_name(english:"Qnap QTS Command Injection (CVE-2017-7876)");

  script_set_attribute(attribute:"synopsis", value:
"The remote OT asset is affected by a vulnerability.");
  script_set_attribute(attribute:"description", value:
"This command injection vulnerability in QTS allows attackers to run
arbitrary commands in the compromised application. QNAP have already
fixed the issue in QTS 4.2.6 build 20170517, QTS 4.3.3.0174 build
20170503 and later versions.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.");
  script_set_attribute(attribute:"see_also", value:"https://www.qnap.com/en/release-notes/qts/4.2.6/20170517");
  script_set_attribute(attribute:"see_also", value:"https://www.qnap.com/en/release-notes/qts/4.3.3.0174/20170503");
  script_set_attribute(attribute:"see_also", value:"https://www.qnap.com/zh-tw/security-advisory/nas-201707-12");
  script_set_attribute(attribute:"solution", value:
"Refer to the vendor advisory.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-7876");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(77);

  script_set_attribute(attribute:"vuln_publication_date", value:"2017/06/15");
  script_set_attribute(attribute:"patch_publication_date", value:"2017/06/15");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/10/16");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:qnap:qts:4.2.6");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:qnap:qts:4.3.3");
  script_set_attribute(attribute:"generated_plugin", value:"former");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Tenable.ot");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("tenable_ot_api_integration.nasl");
  script_require_keys("Tenable.ot/Qnap");

  exit(0);
}


include('tenable_ot_cve_funcs.inc');

get_kb_item_or_exit('Tenable.ot/Qnap');

var asset = tenable_ot::assets::get(vendor:'Qnap');

var vuln_cpes = {
    "cpe:/o:qnap:qts:4.2.6" :
        {"versionEndExcluding" : "4.2.6", "family" : "QTS"},
    "cpe:/o:qnap:qts:4.3.3" :
        {"versionStartIncluding" : "4.3.3", "versionEndExcluding" : "4.3.3.0174", "family" : "QTS"}
};

tenable_ot::cve::compare_and_report(asset:asset, cpes:vuln_cpes, severity:SECURITY_HOLE);

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

26 Nov 2024 00:00Current
8High risk
Vulners AI Score8
CVSS 27.5
CVSS 3.110
EPSS0.033
14