6 matches found
Qnap QES Path Traversal (CVE-2020-2504)
If exploited, this absolute path traversal vulnerability could allow attackers to traverse files in File Station. QNAP has already fixed these issues in QES 2.1.1 Build 20201006 and later. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...
Qnap QES Use of Hard-coded Credentials (CVE-2020-2499)
A hard-coded password vulnerability has been reported to affect earlier versions of QES. If exploited, this vulnerability could allow attackers to log in with a hard-coded password. QNAP has already fixed the issue in QES 2.1.1 Build 20200515 and later. This plugin only works with Tenable.ot...
QNAP QES Installed
Binary data qnapqesinstalled.nbin...
QNAP QES Directory Traversal Vulnerability
QNAP QES is a desktop operating system mainly used for managing files by QNAP China. A directory traversal vulnerability exists in QNAP QES, which can be exploited by a remote attacker to submit a special request to obtain sensitive information...
QNAP QES Trust Management Issues Vulnerabilities
QNAP QES is a desktop operating system from China's QNAP Corporation that is primarily used for managing files. A trust management issue vulnerability exists in versions prior to QES 2.1.1 Build 20200515, which can be exploited by an attacker to log in with a hard-coded password...
QNAP QES Security Vulnerabilities
QNAP QES is a desktop operating system from China's QNAP Inc. that is primarily used for managing files. A security vulnerability exists in versions prior to QES 2.1.1 Build 20201006, which can be exploited by an attacker to obtain sensitive information by generating an error message...