CVE-2009-3279
CVE-2009-3279 (and related CVE-2009-3200) affects QNAP TS-239 Pro/TS-639 Pro firmwares 2.1.7 0613, 3.1.0 0627, 3.1.1 0815: it creates a LUKS partition using AES-256 in plain CBC, enabling local users to obtain sensitive information via a watermark attack; an undocumented recovery key stored in fl...