An unquoted service path vulnerability is reported to affect the service QVssService in QNAP NetBak Replicator. This vulnerability could allow an authorized but non-privileged local user to execute arbitrary code with elevated system privileges. QNAP have already fixed this issue in QNAP NetBak Replicator 4.5.12.1108.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.qnap.com/zh-tw/security-advisory/nas-201912-02 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: qnap
Published: 2019-12-04T16:41:48
Updated: 2024-08-04T20:38:33.433Z
Reserved: 2019-01-29T00:00:00
Link: CVE-2019-7201
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-12-04T17:16:44.507
Modified: 2023-03-01T18:39:00.730
Link: CVE-2019-7201
Redhat
No data.