VYPR
Unrated severityNVD Advisory· Published Dec 29, 2020· Updated Sep 16, 2024

Command Injection Vulnerability in QTS and QuTS hero

CVE-2020-25847

Description

This command injection vulnerability allows attackers to execute arbitrary commands in a compromised application. QNAP have already fixed this vulnerability in the following versions of QTS and QuTS hero.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Qnap/Qtsllm-fuzzy
  • Qnap/Quts Herollm-fuzzy
  • QNAP Systems Inc./QTSv5
    Range: 4.3.x
  • QNAP Systems Inc./QuTS herov5
    Range: unspecified

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.