9621 Agnes Crossing, Lake Suzanneview, New Mexico Island 84604-9295.
Qnap reports three critical vulnerabilities in its NAS systems. There is an update available that everyone should install now. Taiwanese Qnap reports that three vulnerabilities were found in
Qnap reports three critical vulnerabilities in its NAS systems. There is an update available that everyone should install now.
Taiwanese Qnap reports that three vulnerabilities were found in the operating system of NAS devices. The most serious is CVE-2024-21899, which allows hackers to bypass the authentication process in QTS 5.1. Together with the other two vulnerabilities CVE-2024-21900 and CVE-2024-21901, hackers could potentially inject malicious code and execute commands on a NAS.
Qnap emphasizes that these are critical leaks and an update is very important. These operating systems are affected:
| Affected product | Safe version |
| QTS 5.1.x | QTS 5.1.3.2578 Build 20231110 or newer |
| QTS 4.5.x | QTS 4.5.4.2627 Build 20231225 or newer |
| QuTS hero h5.1.x | QuTS hero h5.1.3.2578 Build 20231110 or newer |
| QuTS hero h4.5.x | QuTS hero h4.5.4.2626 Build 20231225 or newer |
| QuTScloud c5.x | QuTScloud c5.1.5.2651 or newer |
| myQNAPcloud 1.0.x | myQNAPcloud 1.0.52 (11/24/2023) or newer |
It goes without saying that every online device needs regular updates. Especially with Qnap, you can do this easily in QTS, QuTS hero or QuTScloud via the web interface. Go to Control panel, system and choose Firmware update. Choose below Live update the option to check for updates. Then the latest version, which is more secure, will be installed automatically.
This is not the first time that Qnap has struggled with critical vulnerabilities. At the end of last year, the company had to quickly close two critical vulnerabilities, after also having to raise the alarm with a new patch for a critical vulnerability in early 2023.
Source: IT Daily
As an experienced journalist and author, Mary has been reporting on the latest news and trends for over 5 years. With a passion for uncovering the stories behind the headlines, Mary has earned a reputation as a trusted voice in the world of journalism. Her writing style is insightful, engaging and thought-provoking, as she takes a deep dive into the most pressing issues of our time.
