Qts@4.2.6 Security Vulnerabilities and Issues — Qts@4.2.6 CVE List

Lucene search

QnapQts4.2.6

3 matches found

CVE•added 2017/06/15 8:29 p.m.•65 views

CVE-2017-7876

This command injection vulnerability in QTS allows attackers to run arbitrary commands in the compromised application. QNAP have already fixed the issue in QTS 4.2.6 build 20170517, QTS 4.3.3.0174 build 20170503 and later versions.

10CVSS9.7AI score0.11848EPSS

CVE•added 2017/09/14 3:29 p.m.•56 views

CVE-2017-13067

QNAP has patched a remote code execution vulnerability affecting the QTS Media Library in all versions prior to QTS 4.2.6 build 20170905 and QTS 4.3.3.0299 build 20170901. This particular vulnerability allows a remote attacker to execute commands on a QNAP NAS using a transcoding service on port 92...

9.8CVSS9.8AI score0.51069EPSS

CVE•added 2017/06/15 8:29 p.m.•47 views

CVE-2017-7629

QNAP QTS before 4.2.6 build 20170517 has a flaw in the change password function.

7.5CVSS8.1AI score0.00284EPSS