A vulnerability involving insecure storage of sensitive information has been reported to affect QSW-M2116P-2T2S and QNAP switches running QuNetSwitch. If exploited, this vulnerability allows remote attackers to read sensitive information by accessing the unrestricted storage mechanism.We have already fixed this vulnerability in the following versions: QSW-M2116P-2T2S 1.0.6 build 210713 and later QGD-1600P: QuNetSwitch 1.0.6.1509 and later QGD-1602P: QuNetSwitch 1.0.6.1509 and later QGD-3014PT: QuNetSwitch 1.0.6.1519 and later
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:HQnap Qgd 1600p
HWQnapwszystkie wersjeQnap Qgd 1602p
HWQnapwszystkie wersjeQnap Qgd 3014pt
HWQnapwszystkie wersjeQnap Qsw M2116p 2t2s
HWQnapwszystkie wersjeQnap Qsw M2116p 2t2s Firmware
OSQnap< 1.0.6Qnap Qunetswitch
APPQnap< 1.0.6.1509
Related vulnerabilities
A command injection vulnerability has been reported to affect QuNetSwitch. The remote attackers can then explo...
A use of hard-coded credentials vulnerability has been reported to affect QuNetSwitch. The remote attackers ca...
A command injection vulnerability has been reported to affect QuNetSwitch. If a remote attacker gains a user a...
A command injection vulnerability has been reported to affect QuNetSwitch. If a local attacker gains an admini...
An externally controlled reference to a resource vulnerability has been reported to affect QNAP NAS running Ph...