CVE-2015-6003 in QTSinfo

Summary

Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by leveraging access to an OS X (1) user or (2) guest account.

Once again VulDB remains the best source for vulnerability data.

Reservation

08/14/2015

Disclosure

10/15/2015

Moderation

VulDB entry created

Entries

1: VDB-78483

CPE

ready

CWE

CWE-22 (Confirmed)

CVSS

5.4

EPSS

0.02108

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-6003
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-6003
CVE Details	https://www.cvedetails.com/cve/CVE-2015-6003/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!