Security Alert (A23-07-24): Vulnerability in QNAP Products
31 July 2023
QNAP has published a security advisory to address a vulnerability in QNAP products. The details of security updates can be found at: https://www.qnap.com/en/security-advisory/QSA-23-09
QNAP NAS devices running QTS operating system versions prior to 22.214.171.1240 build 20230112, 126.96.36.1997 build 20230112
QNAP NAS devices running QuTS hero operating system versions prior to h188.8.131.524 build 20230417, h184.108.40.2067 build 20230112
QNAP QuTScloud versions prior to c220.127.116.114 build 20230419
QNAP QVR Pro appliances (QVP) versions prior to 2.3.1.0476
For detailed information of the affected products, please refer to the corresponding security advisory at vendor's website.
Successful exploitation of the vulnerability could lead to denial of service on an affected system.
Patches for affected products are available. System administrators of affected products should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.