Qnap Alert
1955Warning Date
Severity Level
Warning Number
Target Sector
9 January, 2022
● Medium
2022-4180
All
QNAP has released security updates to address several vulnerabilities in the following products:
- QTS 4.5.4.1787 build 20210910 and later
- QuTS hero h4.5.4.1771 build 20210825 and later
- QuTScloud c4.5.7.1864 and later
- QVPN Service 3.0.760 (2021/12/17) and later
An attacker could exploit these vulnerabilities by doing the following:
- cross-site scripting (XSS)
The CERT team encourages users to review QNAP security advisory and apply the necessary updates: