CVE-2018-19949

Confirmed PUBLISHED

If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. QNAP has already fixed the issue in the...

QNAP Systems Inc. · QTS
Exploited in the wild Used in malware

Recommended Action

Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.

Confidence
Confirmed
Exploitation Status
Exploited in the wild
Observed in Sensors
No
Attempts (30d)
Unique Attacker IPs
CISA KEV
In CISA KEV
CVSS / EPSS
9.8 Critical

At a Glance

If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. QNAP has already fixed the issue in the following QTS versions. QTS 4.4.2.1231 on build 20200302; QTS 4.4.1.1201 on build 20200130; QTS 4.3.6.1218 on build 20200214; QTS 4.3.4.1190 on build 20200107; QTS 4.3.3.1161 on build 20200109; QTS 4.2.6 on build 20200109.

windows cisa malware ransomware
CVE Published
Oct 28, 2020
Exploitation Reported
May 24, 2022
CVSS
9.8 Critical
EPSS
Remote Low complexity No user interaction Unauthenticated

Affected Versions

Vendor Product Version Status
QNAP Systems Inc.
QTS

unspecified to < 4.4.2.1231

Affected
QNAP Systems Inc.
QTS

unspecified to < 4.4.1.1201

Affected
QNAP Systems Inc.
QTS

unspecified to < 4.3.6.1218

Affected
QNAP Systems Inc.
QTS

unspecified to < 4.3.4.1190

Affected
QNAP Systems Inc.
QTS

unspecified to < 4.3.3.1161

Affected
QNAP Systems Inc.
QTS

unspecified to < 4.2.6

Affected

CVE References

Recommended Actions

  • Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.