all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

QNAP Poisoned XML Command Injection (Silently Patched)

Add to bookmarks
Aug. 4, 2022, 2:43 p.m. | Jake Baines

Rapid7 Blog blog.rapid7.com

In researching the mystery surrounding alleged exploitation in the wild of CVE-2020-2509, we found what make be an entirely new vulnerability.

command command injection injection qnap research vulnerability disclosure vulnerability risk management xml

Visit resource

More from blog.rapid7.com / Rapid7 Blog

Metasploit Weekly Wrap-Up 05/03/24 2 days, 7 hours ago | blog.rapid7.com
cve cve-2024 improvement metasploit +6
The Take Command Summit: A Stacked Agenda, and Killer Guest Speakers Coming Your Way May … 3 days, 12 hours ago | blog.rapid7.com
challenges coming command cybersecurity +14
The Business of Cybersecurity Ownership 4 days, 12 hours ago | blog.rapid7.com
accountability business can ciso +6
Velociraptor 0.7.2 Release: Digging Deeper than Ever with EWF Support, Dynamic DNS and More 5 days, 11 hours ago | blog.rapid7.com
discuss dns download dynamic +7
Metasploit Weekly Wrap-Up 04/26/24 1 week, 2 days ago | blog.rapid7.com
addition application clusters community +20
USF College of Engineering Presents Rapid7 With 2024 Corporate Impact Award 1 week, 5 days ago | blog.rapid7.com
april award awards beyond +11
Unauthenticated CrushFTP Zero-Day Enables Complete Server Compromise 1 week, 5 days ago | blog.rapid7.com
access account account access administrator +26
Take Command Summit: Take Breaches from Inevitable to Preventable on May 21 1 week, 6 days ago | blog.rapid7.com
attack aws breaches command +14
Metasploit Weekly Wrap-Up 04/19/24 2 weeks, 2 days ago | blog.rapid7.com
crushftp emergent threat response exploit framework +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States
View on infosec-jobs.com

GRC Analyst

@ Richemont | Shelton, CT, US
View on infosec-jobs.com

Security Specialist

@ Peraton | Government Site, MD, United States
View on infosec-jobs.com

Information Assurance Security Specialist (IASS)

@ OBXtek Inc. | United States
View on infosec-jobs.com

Cyber Security Technology Analyst

@ Airbus | Bengaluru (Airbus)
View on infosec-jobs.com

Vice President, Cyber Operations Engineer

@ BlackRock | LO9-London - Drapers Gardens
View on infosec-jobs.com
View more jobs