Security Alert (A23-08-16): Multiple Vulnerabilities in QNAP Products
25 August 2023
QNAP has published security advisories to address multiple vulnerabilities in QNAP products. The details of security updates can be found at: https://www.qnap.com/en/security-advisory/QSA-23-58 https://www.qnap.com/en/security-advisory/QSA-23-59 https://www.qnap.com/en/security-advisory/QSA-23-60
QNAP NAS devices running QTS operating system versions prior to 126.96.36.1997 build 20230718, 188.8.131.525 build 20230609, 184.108.40.2064 build 20230629
QNAP NAS devices running QuTS hero operating system versions prior to h220.127.116.116 build 20230728, h18.104.22.1684 build 20230609
For detailed information of the affected products, please refer to the corresponding security advisory at vendor's website.
Successful exploitation of the vulnerabilities could lead to information disclosure or security restriction bypass on an affected system.
Patches for affected products are available. System administrators of affected products should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk.