If exploited, the command injection vulnerability could allow remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. QTS versions prior to 4.4.3.1421 on build 20200907.
References
Link | Resource |
---|---|
https://www.qnap.com/en/security-advisory/qsa-20-09 | Vendor Advisory |
Configurations
Information
Published : 2020-11-15 17:15
Updated : 2020-11-30 09:24
NVD link : CVE-2020-2492
Mitre link : CVE-2020-2492
JSON object : View
CWE
CWE-77
Improper Neutralization of Special Elements used in a Command ('Command Injection')
Products Affected
qnap
- qts