Remote Command Injection Vulnerability in QTS NAS Software

Remote Command Injection Vulnerability in QTS NAS Software

CVE-2018-14746 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Command Injection vulnerability in QTS 4.3.5 build 20181013, QTS 4.3.4 build 20181008, QTS 4.3.3 build 20180829, QTS 4.2.6 build 20180829 and earlier versions could allow remote attackers to run arbitrary commands on the NAS.

Learn more about our Web Application Penetration Testing UK.