Qnap Systems Inc Malware Remover vulnerabilities
2 known vulnerabilities affecting qnap_systems_inc/malware_remover.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
2
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-11837P1CRITICALCVSS 9.8Exploited≥ 6.6.x, < 6.6.8.202510232026-01-02
CVE-2025-11837 [CRITICAL] CWE-94 CVE-2025-11837: An improper control of generation of code vulnerability has been reported to affect Malware Remover.
An improper control of generation of code vulnerability has been reported to affect Malware Remover. The remote attackers can then exploit the vulnerability to bypass protection mechanism.
We have already fixed the vulnerability in the following version:
Malware Remover 6.6.8.20251023 and later
nvd
CVE-2020-36198P1MEDIUMCVSS 6.7ExploitedRansomware≥ unspecified, < 4.6.1.02021-05-13
CVE-2020-36198 [MEDIUM] CWE-77 CVE-2020-36198: A command injection vulnerability has been reported to affect certain versions of Malware Remover. I
A command injection vulnerability has been reported to affect certain versions of Malware Remover. If exploited, this vulnerability allows remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. Malware Remover versions prior to 4.6.1.0. This issue does not affect: QNAP Systems Inc. Malware Remover 3.x.
nvd