We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401 and later
CVSS Score
9.8
EPSS Score
0.009
Published
2022-05-05
A command injection vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR FW 5.1.6 build 20211109 and later
CVSS Score
9.8
EPSS Score
0.011
Published
2021-11-26
An improper authentication vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of QVR: QVR FW 5.1.6 build 20211109 and later
CVSS Score
8.8
EPSS Score
0.003
Published
2021-11-26