QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, allows remote authenticated users to gain privileges by registering an executable file, and then waiting for this file to be run in a privileged context after a reboot.
oryginał ENCVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HQnap Iartist Lite
APPQnap≤ 1.4.53.1Qnap Signage Station
APPQnap≤ 2.0
Powiązane podatności
The FTP service in QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, has...
Unrestricted file upload vulnerability in QNAP Signage Station before 2.0.1 allows remote authenticated users ...
An externally controlled reference to a resource vulnerability has been reported to affect QNAP NAS running Ph...
An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 (Hybrid Backup Sync...
A command injection vulnerability has been reported to affect QTS and QuTS hero. If exploited, this vulnerabil...