QNAP addresses a vulnerability in NAS devices

Threat Level – Amber | Vulnerability Report
Download PDF

QNAP has released updates to address a security flaw in its network-attached storage (NAS) devices that allows arbitrary code injection. This vulnerability enables a remote attacker to run any SQL query on the database and has been identified as CVE-2022-27596.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox