Critical severity9.8NVD Advisory· Published Aug 18, 2017· Updated Jun 17, 2026
CVE-2017-12582
CVE-2017-12582
Description
Unprivileged user can access all functions in the Surveillance Station component in QNAP TS212P devices with firmware 4.2.1 build 20160601. Unprivileged user cannot login at front end but with that unprivileged user SID, all function can access at Surveillance Station.
Affected products
2- cpe:2.3:o:qnap:ts-212p_firmware:4.2.1:*:*:*:*:*:*:*
- Range: 4.2.1 build 20160601
Patches
Vulnerability mechanics
References
1- www.kth.ninja/2017/08/qnap-surveillance-station.htmlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.