QNAP VioStor NVR devices with firmware 4.0.3, and the Surveillance Station Pro component in QNAP NAS, have a hardcoded guest account, which allows remote attackers to obtain web-server login access via unspecified vectors.
References
Link | Resource |
---|---|
http://www.kb.cert.org/vuls/id/927644 | US Government Resource |
Information
Published : 2013-06-07 13:55
Updated : 2013-06-09 21:00
NVD link : CVE-2013-0142
Mitre link : CVE-2013-0142
JSON object : View
CWE
CWE-255
Credentials Management Errors
Products Affected
qnap
- surveillance_station_pro
- nas
- viostor_network_video_recorder