Vulnerability Details CVE-2018-0730
This command injection vulnerability in File Station allows attackers to execute commands on the affected device. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 77.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2018-0730
-
cpe:2.3:o:qnap:qts:4.2.6
-
cpe:2.3:o:qnap:qts:4.3.3.0868
-
cpe:2.3:o:qnap:qts:4.3.3.0998
-
cpe:2.3:o:qnap:qts:4.3.4.0899
-
cpe:2.3:o:qnap:qts:4.3.4.1029
-
cpe:2.3:o:qnap:qts:4.3.6.0895
-
cpe:2.3:o:qnap:qts:4.3.6.0907
-
cpe:2.3:o:qnap:qts:4.3.6.0923
-
cpe:2.3:o:qnap:qts:4.3.6.0944
-
cpe:2.3:o:qnap:qts:4.3.6.0959
-
cpe:2.3:o:qnap:qts:4.3.6.0979
-
cpe:2.3:o:qnap:qts:4.3.6.0993
-
cpe:2.3:o:qnap:qts:4.3.6.1013
-
cpe:2.3:o:qnap:qts:4.3.6.1033
-
cpe:2.3:o:qnap:qts:4.4.1.0948
-
cpe:2.3:o:qnap:qts:4.4.1.0949
-
cpe:2.3:o:qnap:qts:4.4.1.0978
-
cpe:2.3:o:qnap:qts:4.4.1.0998
-
cpe:2.3:o:qnap:qts:4.4.1.0999
-
cpe:2.3:o:qnap:qts:4.4.1.1031
-
cpe:2.3:o:qnap:qts:4.4.1.1033
-
cpe:2.3:o:qnap:qts:4.4.1.1064
-
cpe:2.3:o:qnap:qts:4.4.1.1081
-
cpe:2.3:o:qnap:qts:4.4.1.1086
-
cpe:2.3:o:qnap:qts:4.4.1.1101