Security News > 2017 > April > QNAP NAS devices open to remote command execution (Help Net Security)

If you’re using one of the many QNAP NAS devices and you haven’t yet upgraded the QTS firmware to version 4.2.4, you should do so immediately if you don’t want it to fall prey to attackers. Among the vulnerabilities fixed by QNAP in this latest firmware version, released on March 21, are three command injection flaws in the web user interface that can be exploited to gain remote command execution on a vulnerable device as … More →

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/Cg8TuE7klVM/