CVE-2018-14748

Summary

Improper Authorization vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions could allow remote attackers to power off the NAS.

Affected Software

VendorProductVersion RangeStatus
QNAPQNAP QTSQTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versionsaffected

Weaknesses

  • Improper Authorization

ADP Enrichment

CVE Program Container

Additional References

References