Stack overflow

2021-09-1004:15:00

PRIOn knowledge base

www.prio-n.com

9.8 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

70.9%

JSON

A stack buffer overflow vulnerability has been reported to affect QNAP device running NVR Storage Expansion. If exploited, this vulnerability allows attackers to execute arbitrary code. We have already fixed this vulnerability in the following versions of NVR Storage Expansion: NVR Storage Expansion 1.0.6 ( 2021/08/03 ) and later

CPENameOperatorVersion
ej1600_firmwarelt1.0.6
tl-d1600s_firmwarelt1.0.6
tl-d400s_firmwarelt1.0.6
tl-d800c_firmwarelt1.0.6
tl-d800s_firmwarelt1.0.6
tl-r1200c-rp_firmwarelt1.0.6
tl-r1200s-rp_firmwarelt1.0.6
tl-r1220sep-rp_firmwarelt1.0.6
tl-r1620sdc_firmwarelt1.0.6
tl-r1620sep-rp_firmwarelt1.0.6

Name	Operator	Version
ej1600_firmware	lt	1.0.6
tl-d1600s_firmware	lt	1.0.6
tl-d400s_firmware	lt	1.0.6
tl-d800c_firmware	lt	1.0.6
tl-d800s_firmware	lt	1.0.6
tl-r1200c-rp_firmware	lt	1.0.6
tl-r1200s-rp_firmware	lt	1.0.6
tl-r1220sep-rp_firmware	lt	1.0.6
tl-r1620sdc_firmware	lt	1.0.6
tl-r1620sep-rp_firmware	lt	1.0.6

Rows per page:

1-10 of 141

References

www.qnap.com/en/security-advisory/qsa-21-36