QNAP fixed two critical vulnerabilities in QTS OS and apps

Taiwanese vendor QNAP warns of two critical command injection flaws in the QTS operating system and applications on its NAS devices. Taiwanese vendor QNAP Systems addressed two critical command injection vulnerabilities, tracked as CVE-2023-23368 and CVE-2023-23369, that impact the QTS operating system and applications on its network-attached storage (NAS) devices. The vulnerability CVE-2023-23368 (CVSS score […]

The post QNAP fixed two critical vulnerabilities in QTS OS and apps appeared first on Security Affairs.

applications apps breaking news command command injection critical critical vulnerabilities cve devices flaws hacking impact information security news injection internet of things it information security nas network network-attached storage operating system pierluigi paganini qnap security storage system systems vendor vulnerabilities