CVE-2019-7193

Summary

This improper input validation vulnerability allows remote attackers to inject arbitrary code to the system. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.

Affected Software

VendorProductVersion RangeStatus
n/aQNAP NAS devicesQTS 4.4.0 - QTS 4.4.1: before build 20190918, QTS 4.3.6: before build 20190919affected

Weaknesses

  • Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: yes
    • Technical Impact: total

Additional References

References