Unrated severityNVD Advisory· Published Dec 29, 2020· Updated Sep 16, 2024
Command Injection Vulnerability in QTS and QuTS hero
CVE-2020-25847
Description
This command injection vulnerability allows attackers to execute arbitrary commands in a compromised application. QNAP have already fixed this vulnerability in the following versions of QTS and QuTS hero.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- QNAP Systems Inc./QTSv5Range: 4.3.x
- QNAP Systems Inc./QuTS herov5Range: unspecified
Patches
Vulnerability mechanics
References
1- www.qnap.com/en/security-advisory/qsa-20-20mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.