CVE-2021-34349

A command injection vulnerability has been reported to affect QNAP device running QVR. If exploited, this vulnerability could allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.5 build 20210803 and later
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:qnap:qvr:*:*:*:*:*:*:*:*

Information

Published : 2021-09-26 18:15

Updated : 2021-10-05 09:39


NVD link : CVE-2021-34349

Mitre link : CVE-2021-34349


JSON object : View

CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')

Advertisement

dedicated server usa

Products Affected

qnap

  • qvr