CVE-2021-28799

QNAP NAS running HBS 3 contains an improper authorization vulnerability which can allow remote attackers to log in to a device. Vendor/Product: QNAP Network Attached Storage (NAS). Added to CISA KEV 2022-03-31; required action: Apply updates per vendor instructions.