Arbitrary Code Injection Vulnerability in QNAP QTS

Arbitrary Code Injection Vulnerability in QNAP QTS

CVE-2019-7193 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

This improper input validation vulnerability allows remote attackers to inject arbitrary code to the system. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.

Learn more about our Web Application Penetration Testing UK.