QNAP NAS application Media Streaming add-on version 421.1.0.2, 430.1.2.0, and earlier does not authenticate requests properly. Successful exploitation could lead to change of the Media Streaming settings, and leakage of sensitive information of the QNAP NAS.
References
Link | Resource |
---|---|
https://www.qnap.com/zh-tw/security-advisory/nas-201803-08 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: qnap
Published: 2018-03-08T00:00:00
Updated: 2018-03-08T13:57:01
Reserved: 2017-04-10T00:00:00
Link: CVE-2017-7638
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-03-08T14:29:00.410
Modified: 2018-03-27T17:16:57.937
Link: CVE-2017-7638
JSON object: View
Redhat Information
No data.
CWE