Directory traversal vulnerability in QNAP QTS prior to 4.1.4 build 0910 and 4.2.x prior to 4.2.0 RC2 build 0910, when AFP is enabled, allows remote malicious users to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
qnap qts |