PT-2021-5952 · Qnap · Surveillance Station+1
Crixer
·
Published
2021-12-10
·
Updated
2022-01-10
·
CVE-2021-38687
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Surveillance Station versions prior to 5.2.0.4.2
Surveillance Station versions prior to 5.2.0.3.2
Surveillance Station versions prior to 5.1.5.4.6
Surveillance Station versions prior to 5.1.5.3.6
Description
A stack buffer overflow issue has been reported to affect QNAP NAS running Surveillance Station, allowing attackers to execute arbitrary code if exploited.
Recommendations
For QTS 5.0.0 (64 bit), update Surveillance Station to version 5.2.0.4.2 or later.
For QTS 5.0.0 (32 bit), update Surveillance Station to version 5.2.0.3.2 or later.
For QTS 4.3.6 (64 bit), update Surveillance Station to version 5.1.5.4.6 or later.
For QTS 4.3.6 (32 bit), update Surveillance Station to version 5.1.5.3.6 or later.
For QTS 4.3.3, update Surveillance Station to version 5.1.5.3.6 or later.
Fix
Buffer Overflow
Stack Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Qts
Surveillance Station