Qnap Updates
1714Warning Date
Severity Level
Warning Number
Target Sector
7 December, 2020
● High
2020-2151
All
Description:
QNAP has released security updates to address multiple vulnerabilities in the following products:
- All QNAP NAS
- QNAP NAS running Photo Station
- QNAP NAS running Multimedia Console
- QNAP NAS running Music Station
Threats:
A remote attacker could exploit these vulnerabilities by doing the following:
- Cross-site scripting (XSS)
- Code Injection
Best practice and Recommendations:
The CERT team encourages users to review QNAP security advisory and apply the necessary updates: