3 matches found
QNAP Roon Server未授权RCE漏洞(CVE-2021-28810、CVE-2021-28811)
...
CVE-2021-28810 Vulnerability in Roon Server
If exploited, this vulnerability allows an attacker to access resources which are not otherwise accessible without proper authentication. Roon Labs has already fixed this vulnerability in the following versions: Roon Server 2021-05-18 and later...
CVE-2021-28810
CVE-2021-28810 affects Roon Server; an attacker could access resources that are normally protected by authentication. The underlying issue enables unauthorized access (authentication bypass) without needing prior credentials. CVSS details indicate a high impact (CONfidentiality: HIGH) on the CVSS...