CVE-2018-19949

QNAP NAS File Station Command Injection Vulnerability

A command injection vulnerability affecting QNAP NAS File Station could allow remote attackers to run commands. Vendor/Product: QNAP Network Attached Storage (NAS). Added to CISA KEV 2022-05-24; required action: Apply updates per vendor instructions.

Category: Vulnerability, Known Exploited

Reference: NVD CVE-2018-19949