What are you looking for ?
Mobile Search Icon
Mobile Menu Icon
RAIDON

Qnap Security Advisory: Command Injection Vulnerabilities in QVR

Affect certain Qnap EOL devices running QVR.

This is a Press Release edited by StorageNewsletter.com on September 30, 2021 at 1:31 pm

  • Release date: September 27, 2021

  • Security ID: QSA-21-35

  • Severity: Critical

  • CVE identifier: CVE-2021-34348 | CVE-2021-34349 | CVE-2021-34351

  • Affected products: Certain Qnap EOL devices running QVR

  • Status: Resolved

Summary
Two command injection vulnerabilities have been reported to affect certain Qnap EOL devices running QVR. If exploited, these vulnerabilities allow remote attackers to run arbitrary commands.

The company have already fixed these vulnerabilities in the following versions of QVR:

  • QVR 5.1.5 build 20210803 and later

Recommendation
To secure your device, the company strongly recommend updating your system to the latest version to benefit from vulnerability fixes. User can check the product support status to see the latest updates available to your device model.

Updating QVR

  1. Log on to QVR as administrator.

  2. Go to Control Panel > System Settings > Firmware Update.

  3. Under Live Update, click Check for Update.
    QVR downloads and installs the latest available update.

Tip: User can also download the update from qnapsecurity.com. Go to Support > Download and then perform a manual update for your specific device.

Acknowledgements: 360 的安全研究员 侯留洋(houliuyang@360.cn)和叶根深(yegenshen@360.cn

Revision History: V1.0 (September 27, 2021) – Published

Read also :
Qnap Security Advisory: Bulletin ID: QSA-21-03, QSA-21-33, QSA-21-34, QSA-21-36, QSA-21-37
Concerning insufficient HTTP security headers and Stack buffer overflow vulnerabilities in QTS, QuTS hero, and QuTScloud, stack buffer overflow vulnerability in QUSBCam2, stack-based buffer overflow vulnerabilities in NVR storage expansion, and insufficiently protected credentials in QSW-M2116P-2T2S and QuNetSwitch
September 13, 2021 | Press Release
Qnap Security Advisory: Bulletin ID: QSA-21-39 and QSA-21-40
Concerning out-of-bounds vulnerabilities in OpenSSL on NAS running Hybrid Backup Sync and out-of-bounds read vulnerability in OpenSSL on NAS running QTS, QuTS hero, and QuTScloud
September 1, 2021 | Press Release
Qnap Security Advisory | Bulletin ID: QSA-21-19
Concerning Improper access control vulnerability in HBS 3/Hybrid Backup Sync
July 13, 2021 | Press Release
Qnap Security Advisory Bulletin ID: QSA-21-09, QSA-21-29 ~ QSA-21-32
Concerning DNSpooq vulnerabilities, multiple command injection vulnerabilities in QTS and QuTS hero, stored XSS vulnerability in QuLog Center, stored XSS vulnerability in Q'center, and XSS vulnerability in QTS and QuTS hero
July 7, 2021 | Press Release
Qnap Security Advisory Bulletin ID: QSA-21-28
Concerning command injection vulnerability in QTS NAS OS
June 25, 2021 | Press Release
Qnap Security Advisory Bulletin ID: QSA-21-26 and QSA-21-27
Insecure storage of sensitive information in myQNAPcloud Link and SMB Out-of-Bounds read vulnerability in QTS and QuTS hero NAS OS
June 25, 2021 | Press Release
Qnap Security Advisory Bulletin ID: QSA-21-23, QSA-21-24 and QSA-21-25
Concerning out-of-bounds read vulnerability in QSS, inclusion of sensitive information in QSS, and improper access control vulnerability in Helpdesk
June 18, 2021 | Press Release
Qnap Security Advisory Bulletin ID: QSA-21-20, QSA-21-21 and QSA-21-22
Concerning post-authentication reflected XSS vulnerability in Q'center, command injection vulnerability in video station, and DOM-based XSS vulnerability in QTS and QuTS hero
June 7, 2021 | Press Release
Articles_bottom
SNL Awards_2026
AIC