CVE-2017-13071

Summary

QNAP has already patched this vulnerability. This security concern allows a remote attacker to run arbitrary commands on the QNAP Video Station 5.1.3 (for QTS 4.3.3), 5.2.0 (for QTS 4.3.4), and earlier.

Affected Software

VendorProductVersion RangeStatus
QNAPVideo StationVideo Station 5.1.3 (for QTS 4.3.3), 5. 2.0 (for QTS 4.3.4), and earlieraffected

Weaknesses

  • Command injection

ADP Enrichment

CVE Program Container

Additional References

References