PT-2018-12703 · Qnap · Qts
Publicado
2018-11-28
·
Atualizado
2019-10-03
·
CVE-2018-14748
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
QTS versions 4.3.5 build 20181013 through 4.2.6 build 20180829 and earlier
Description
The issue is related to an Improper Authorization flaw that could allow remote attackers to power off the NAS.
Recommendations
For QTS versions 4.3.5 build 20181013 through 4.2.6 build 20180829 and earlier, update to a version that addresses the Improper Authorization issue to prevent remote attackers from powering off the NAS.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Incorrect Authorization
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Qts