An improper authentication vulnerability has been reported to affect VioStor. If a remote attacker, they can then exploit the vulnerability to compromise the security of the system.
We have already fixed the vulnerability in the following version:
VioStor 5.1.6 build 20250621 and later
CVSS Score
9.8
EPSS Score
0.006
Published
2025-08-29
We have already fixed this vulnerability in the following versions of QVR: QVR 5.1.6 build 20220401 and later
CVSS Score
9.8
EPSS Score
0.009
Published
2022-05-05
A command injection vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following versions of QVR: QVR FW 5.1.6 build 20211109 and later
CVSS Score
9.8
EPSS Score
0.011
Published
2021-11-26
An improper authentication vulnerability has been reported to affect QNAP device, VioStor. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of QVR: QVR FW 5.1.6 build 20211109 and later
CVSS Score
8.8
EPSS Score
0.003
Published
2021-11-26