Critical severity9.8NVD Advisory· Published Sep 19, 2017· Updated May 13, 2026

CVE-2017-10700

Description

In the medialibrary component in QNAP NAS 4.3.3.0229, an un-authenticated, remote attacker can execute arbitrary system commands as the root user of the NAS application.

Affected products

Qnap/Qts
cpe:2.3:o:qnap:qts:4.3.3.0229:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.lateralsecurity.com/downloads/Lateral_Security-Advisory-QNAP_QTS_CVE-2017-10700.pdfnvdThird Party Advisory
www.qnap.com/en/support/con_show.phpnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000