Security Alerts

Your review has been sent successfully
Classification
These posts contain security alerts, including digital loopholes, electronic attacks, technical updates, and they are classified base on the level of severity.

Critical

High

Medium

Low

QNAP Updates

190

Warning Date: 23 November, 2021

Severity Level ● High

Warning Number: 2021-3915

Target Sector: All

Description:

QNAP has released security updates to address several vulnerabilities in the following product:

  • QNAP NAS
    • running QTS and QuTS hero
    • running QmailAgent
    • running Ragic Cloud DB

Threats:

An attacker could exploit these vulnerabilities by doing the following:

  • Cross-site request forgery (CSRF)
  • Reflected cross-site scripting (XSS)
  • Execute arbitrary code

Best practice and Recommendations:

The CERT team encourages users to review QNAP security advisory and apply the necessary updates:

Last updated at 23 November, 2021

Rate the content

rate-icon
up icon