#Qnap surveillance station backup update#
Given the vulnerabilities' severity ratings, customers should update both apps to the latest available versions as soon as possible.
The security bug was addressed in Photo Station 6.0.11 and later. "If exploited, this vulnerability allows remote attackers to inject malicious code," according to QNAP. The company has also patched a medium severity cross-site scripting (XSS) vulnerability affecting earlier versions of the Photo Station app used to upload images to QNAP NAS device, create albums, or view them remotely.
#Qnap surveillance station backup software#
QNAP has already fixed the critical vulnerability in the following software versions: When successfully exploiting it for arbitrary code execution, the attackers will also regularly subvert any security service or anti-malware solutions running on the compromised device. "If exploited, this vulnerability allows attackers to execute arbitrary code," QNAP explains in a security advisory from today. The critical security flaw patched today by QNAP is a stack-based buffer overflow vulnerability impacting QNAP NAS devices running Surveillance Station. Critical RCE bug fixed in the latest app versions It is a Turbo NAS standard application with support for over 3,000 IP camera models, and it can be installed from the company's QTS App Center. Surveillance Station is QNAP's network surveillance Video Management System (VMS), a software solution that can help users manage and monitor up to 12 IP cameras. QNAP has addressed a critical security vulnerability in the Surveillance Station app that allows attackers to execute malicious code remotely on network-attached storage (NAS) devices running the vulnerable software.
0 kommentar(er)
