CVE-2021-34352
CVE-2021-34352 describes a command injection vulnerability in QNAP QVR . The issue could allow a remote attacker to execute arbitrary commands on affected devices. The advisory states exploitation is possible remotely and notes that mitigation is to update to version QVR 5.1.5 build 20210902 or l...