3 matches found
PT-2024-13785 · Bosch · Bcc102 +3
Name of the Vulnerable Software and Affected Versions: Bosch BCC100 smart thermostat affected versions not specified BCC101/BCC102/BCC50 products affected versions not specified Description: A vulnerability allows an unauthenticated attacker to replace the device’s firmware with a malicious one b...
The vulnerability of the HBS 3 (Hybrid Backup Sync) application for backup and disaster recovery operations on QNAP’s operating systems, related to authentication procedures that allow unauthorized users to escalate their privileges.
The vulnerability of the HBS 3 Hybrid Backup Sync application for backup and disaster recovery functions on QNAP network storage operating systems is related to deficiencies in the server authentication process of RTSS. Exploiting this vulnerability could allow a malicious actor to gain increased...
QNAP NAS Hybrid Backup Missing Authentication for Critical Function Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of QNAP NAS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RTSS server, which listens on TCP port 8899 by default. The issue results from the lack of...