all InfoSec news
QNAP warns about critical vulnerabilities in NAS systems
Malware Analysis, News and Indicators - Latest topics malware.news
QNAP has published a security advisory about two critical vulnerabilities that could allow remote attackers to execute commands via a network.
One of the vulnerabilities affects the QTS and QuTS operating systems (OS) for QNAP’s network attached storage systems (NAS). The second one can be found in versions of QTS, the Multimedia Console, and the Media Streaming add-on.
CVE-2023-23368
The first vulnerability, CVE-2023-23368 (CVSS score 9.8 out of 10), is an OS command injection vulnerability.
OS command injection (also …
advisory a network attackers critical critical vulnerabilities found nas network operating systems qnap security security advisory storage storage systems systems vulnerabilities