QNAP has addressed a critical vulnerability allowing attackers to log into QNAP NAS (network-attached storage) devices using hardcoded credentials.
The hard-coded credentials vulnerability tracked as
was found by Taiwan-based
, the company's disaster recovery and data backup solution.
The company says that the security bug is already fixed in the following HBS versions and advises customers to update the software to the latest released version: