Arbitrary Code Injection Vulnerability in QNAP QTS
CVE-2019-7193 · CRITICAL Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
This improper input validation vulnerability allows remote attackers to inject arbitrary code to the system. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.
Learn more about our Web Application Penetration Testing UK.