Arbitrary OS Command Execution Vulnerability in QNAP NAS Media Streaming Add-on

CVE-2017-7640 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

QNAP NAS application Media Streaming add-on version 421.1.0.2, 430.1.2.0, and earlier allows remote attackers to run arbitrary OS commands against the system with root privileges.

Learn more about our Web Application Penetration Testing UK.