Command Injection Vulnerability in QNAP File Station Allows Remote Code Execution

Command Injection Vulnerability in QNAP File Station Allows Remote Code Execution

CVE-2018-0730 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

This command injection vulnerability in File Station allows attackers to execute commands on the affected device. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.

Learn more about our Web Application Penetration Testing UK.