Security update: Attackers could run their own commands on Qnap NAS
Source: Heise.de added 29th Oct 2020
Network storage from Qnap can be attacked through two holes. A patch can help.
(Image: Artur Szczybylo / Shutterstock.com)
Anyone who owns a NAS from Qnap should bring the QTS operating system up to date. Otherwise, attackers could attack devices.
In a security warning, Qnap reported the vulnerabilities (CVE – 2020 – 2490, CVE – 2020 – 2492) outgoing threat level with ” medium “classified. Attacks should be possible from a distance. After a successful attack, you should be able to execute your own commands. The developers do not explain what an attack scenario looks like.
According to their own information, they have the vulnerabilities in Version 4.4.3. 1421 build 20200907 closed. The edition has been available since the beginning of September. In the system settings you can check the status of your own NAS device and update it if necessary.
(des)
brands: ATI ELO QNAP YL media: Heise.de keywords: Operating System
Related posts
Notice: Undefined variable: all_related in /var/www/vhosts/rondea.com/httpdocs/wp-content/themes/rondea-2-0/single-article.php on line 88
Notice: Undefined variable: all_related in /var/www/vhosts/rondea.com/httpdocs/wp-content/themes/rondea-2-0/single-article.php on line 88
Related Products
Notice: Undefined variable: all_related in /var/www/vhosts/rondea.com/httpdocs/wp-content/themes/rondea-2-0/single-article.php on line 91
Warning: Invalid argument supplied for foreach() in /var/www/vhosts/rondea.com/httpdocs/wp-content/themes/rondea-2-0/single-article.php on line 91