QNAP: Two closed security holes in “QNAP VS Series NVR”

NAS manufacturer QNAP has issued a security warning published. It affects the products of the “QNAP VS Series NVR” series. There is a security hole classified as critical, but it was already fixed with the release of QVR 5.1.6 Build 20211109. The vulnerability, listed under CVE-2021-38685, allows successful attackers to execute any further commands. In addition to this loophole, the one listed under CVE-2021-38686 has been closed because there was a weakness in authentication. If you are using one of the devices from the series, the best thing to do is to make sure that you have a secure software version on the NAS.

Affiliate links are included in this article. Clicking on it will take you directly to the provider. Should you decide to buy there, we will receive a small commission. Nothing changes in the price for you. Thank you for your support!

Leave a Comment