cbcvebase.
CVE-2018-19949
published 2020-10-28

CVE-2018-19949: If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. QNAP has already fixed the issue in the following…

PriorityP196critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
KEVITWRansomware
CISA Known Exploited Vulnerabilitydue 2022-06-14
Exploited in the wild
EPSS
24.45%
97.6th percentile
If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. QNAP has already fixed the issue in the following QTS versions. QTS 4.4.2.1231 on build 20200302; QTS 4.4.1.1201 on build 20200130; QTS 4.3.6.1218 on build 20200214; QTS 4.3.4.1190 on build 20200107; QTS 4.3.3.1161 on build 20200109; QTS 4.2.6 on build 20200109.

Affected

13 ranges
VendorProductVersion rangeFixed in
qnapqts< 4.2.64.2.6
qnapqts
qnapqts>= 4.3.1.0013 < 4.3.3.11614.3.3.1161
qnapqts>= 4.3.4 < 4.3.4.11904.3.4.1190
qnapqts>= 4.3.6 < 4.3.6.12184.3.6.1218
qnapqts>= 4.4.0 < 4.4.1.12014.4.1.1201
qnapqts>= 4.4.2 < 4.4.2.12314.4.2.1231
qnap_systems_incqts>= unspecified < 4.4.2.12314.4.2.1231
qnap_systems_incqts>= unspecified < 4.4.1.12014.4.1.1201
qnap_systems_incqts>= unspecified < 4.3.6.12184.3.6.1218
qnap_systems_incqts>= unspecified < 4.3.4.11904.3.4.1190
qnap_systems_incqts>= unspecified < 4.3.3.11614.3.3.1161
qnap_systems_incqts>= unspecified < 4.2.64.2.6

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability resides in QNAP NAS File Station component — monitor for unexpected command execution originating from File Station processes on QNAP NAS devices
  • Target platform is QNAP Network Attached Storage (NAS); scope detection to QNAP NAS devices running QTS versions prior to the fixed builds
  • ·Fixed in QTS 4.4.2.1231 build 20200302; earlier builds are vulnerable — ensure patched build is confirmed before removing detection coverage

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vulncheck9.8CRITICAL
cisa9.8CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.