all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Critical PHP Vulnerability Exposes QNAP NAS Devices to Remote Attacks

Add to bookmarks
June 23, 2022, 6:36 a.m. | noreply@blogger.com (Ravie Lakshmanan)

The Hacker News thehackernews.com

QNAP, Taiwanese maker of network-attached storage (NAS) devices, on Wednesday said it's in the process of fixing a critical three-year-old PHP vulnerability that could be abused to achieve remote code execution.
"A vulnerability has been reported to affect PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24, and 7.3.x below 7.3.11 with improper nginx config," the hardware vendor said in an

attacks critical devices nas php qnap qnap nas vulnerability

Visit resource

More from thehackernews.com / The Hacker News

Apache Cordova App Harness Targeted in Dependency Confusion Attack 5 hours ago | thehackernews.com
actor apache app attack +21
Webinar: Learn Proactive Supply Chain Threat Hunting Techniques 8 hours ago | thehackernews.com
attacks breach cybersecurity defenses +23
Police Chiefs Call for Solutions to Access Encrypted Data in Serious Crime Cases 8 hours ago | thehackernews.com
access action call called +30
Unmasking the True Cost of Cyberattacks: Beyond Ransom and Recovery 9 hours ago | thehackernews.com
beyond breaches businesses can +15
German Authorities Issue Arrest Warrants for Three Suspected Chinese Spies 9 hours ago | thehackernews.com
arrest china chinese federal +9
U.S. Imposes Visa Restrictions on 13 Linked to Commercial Spyware Misuse 12 hours ago | thehackernews.com
businesses commercial commercial spyware department +11
Russia's APT28 Exploited Windows Print Spooler Flaw to Deploy 'GooseEgg' Malware 15 hours ago | thehackernews.com
actor april apt28 called +21
Russian Hacker Group ToddyCat Uses Advanced Tools for Industrial-Scale Data Theft 1 day, 4 hours ago | thehackernews.com
access actor advanced adversary +21
Pentera's 2024 Report Reveals Hundreds of Security Events per Week, Highlighting the Criticality of Continuous … 1 day, 8 hours ago | thehackernews.com
compromised continuous cyberattack deploy +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Engineer II, Offensive Security Penetration Testing

@ Amazon.com | US, TX, Virtual Location - Texas
View on infosec-jobs.com

Cybersecurity Specialist (Security Engineering)

@ Triton AI Pte Ltd | Singapore, Singapore, Singapore
View on infosec-jobs.com

Information Systems Security Officer (ISSO)

@ ARA | Arlington, Virginia, United States
View on infosec-jobs.com

Lead - IT Risk compliance & Info Security

@ First Advantage | Bengaluru-560042, Karnataka
View on infosec-jobs.com

Embedded VSOC Analyst

@ Sibylline Ltd | Australia, Australia
View on infosec-jobs.com
View more jobs