Remote Command Injection Vulnerability in Helpdesk Versions 1.1.21 and Earlier in QNAP QTS

Remote Command Injection Vulnerability in Helpdesk Versions 1.1.21 and Earlier in QNAP QTS

CVE-2018-0714 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Command injection vulnerability in Helpdesk versions 1.1.21 and earlier in QNAP QTS 4.2.6 build 20180531, QTS 4.3.3 build 20180528, QTS 4.3.4 build 20180528 and their earlier versions could allow remote attackers to run arbitrary commands in the compromised application.

Learn more about our Web Application Penetration Testing UK.