all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

QNAP Poisoned XML Command Injection (Silently Patched)

Add to bookmarks
Aug. 4, 2022, 2:43 p.m. | Jake Baines

Rapid7 Blog blog.rapid7.com

In researching the mystery surrounding alleged exploitation in the wild of CVE-2020-2509, we found what make be an entirely new vulnerability.

command command injection injection qnap research vulnerability disclosure vulnerability risk management xml

Visit resource

More from blog.rapid7.com / Rapid7 Blog

Metasploit Weekly Wrap-Up 04/19/24 14 hours ago | blog.rapid7.com
crushftp emergent threat response exploit framework +11
Enforce and Report on PCI DSS v4 Compliance with Rapid7 2 days, 20 hours ago | blog.rapid7.com
adoption compliance council data +21
Rapid7 Insight Platform Achieves Level 2 TX-Ramp Authorization 3 days, 16 hours ago | blog.rapid7.com
authorization authorization management cloud cloud security +17
Start with threat modelling and let gamers game 1 week ago | blog.rapid7.com
availability cloud demand game +20
Metasploit Weekly Wrap-Up 04/12/24 1 week ago | blog.rapid7.com
account account takeover active directory authentication +16
CVE-2024-3400: Critical Command Injection Vulnerability in Palo Alto Networks Firewalls 1 week ago | blog.rapid7.com
advisory alto april arbitrary code +25
Stories from the SOC Part 2: MSIX Installer Utilizes Telegram Bot to Execute IDAT Loader 1 week, 2 days ago | blog.rapid7.com
analysis application blog bot +17
Patch Tuesday - April 2024 1 week, 3 days ago | blog.rapid7.com
april critical cwe defender +11
Metasploit Weekly Wrap-Up 04/05/2024 2 weeks ago | blog.rapid7.com
capabilities esc exploiting family +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cyber Security Architect - SR

@ ERCOT | Taylor, TX
View on infosec-jobs.com

SOC Analyst

@ Wix | Tel Aviv, Israel
View on infosec-jobs.com

Associate Director, SIEM & Detection Engineering(remote)

@ Humana | Remote US
View on infosec-jobs.com

Senior DevSecOps Architect

@ Computacenter | Birmingham, GB, B37 7YS
View on infosec-jobs.com
View more jobs