Unprivileged user can access all functions in the Surveillance Station component in QNAP TS212P devices with firmware 4.2.1 build 20160601. Unprivileged user cannot login at front end but with that unprivileged user SID, all function can access at Surveillance Station.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://www.kth.ninja/2017/08/qnap-surveillance-station.html |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-08-18T16:00:00
Updated: 2024-08-05T18:43:55.873Z
Reserved: 2017-08-05T00:00:00
Link: CVE-2017-12582
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-08-18T16:29:00.373
Modified: 2024-11-21T03:09:47.923
Link: CVE-2017-12582
Redhat
No data.