Over the weekend, Taiwan-based QNAP Systems announced patches for multiple vulnerabilities impacting its products, including a critical-severity bug leading to unauthenticated device access. QNAP is known for its NAS and professional network video recorder (NVR) products. According to QNAP, the issue impacts its QTS, QuTS hero, and QuTScloud products, essentially exposing network-attached storage (NAS) devices to unauthenticated access. The flaw was addressed with the release of multiple patches.
Read more: https://www.securityweek.com/critical-vulnerability-allows-access-to-qnap-nas-devices/