High severity8.8NVD Advisory· Published Jul 17, 2018· Updated Jun 17, 2026
CVE-2018-0708
CVE-2018-0708
Description
Command injection vulnerability in networking of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=1.7.1063+ 1 more
- (no CPE)range: <=1.7.1063
- (no CPE)range: 1.7.1063 and earlier
Patches
Vulnerability mechanics
References
6- packetstormsecurity.com/files/148515/QNAP-Qcenter-Virtual-Appliance-1.6.x-Information-Disclosure-Command-Injection.htmlnvdExploitThird Party AdvisoryVDB Entry
- seclists.org/fulldisclosure/2018/Jul/45nvdExploitMailing ListThird Party Advisory
- www.coresecurity.com/advisories/qnap-qcenter-virtual-appliance-multiple-vulnerabilitiesnvdExploitThird Party Advisory
- www.exploit-db.com/exploits/45015/nvdExploitThird Party AdvisoryVDB Entry
- www.securityfocus.com/archive/1/542141/100/0/threadednvdExploitThird Party AdvisoryVDB Entry
- www.qnap.com/zh-tw/security-advisory/nas-201807-10nvdVendor Advisory
News mentions
0No linked articles in our index yet.