OS command execution in QNAP Proxy Server

#VU13191 OS command execution in QNAP Proxy Server

Published: 2018-06-06

Vulnerability identifier: #VU13191

Vulnerability risk: High

CVSSv3.1: 8.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2017-7637

CWE-ID: CWE-78

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
QNAP Proxy Server
Server applications / Web servers

Vendor: QNAP Systems, Inc.

Description
The vulnerability allows a remote attacker to execute shell commands on the target system.

The weakness exists due to incorrect processing of the user’s input data in the certain parameter. A remote attacker can inject and execute arbitrary shell commands with root privileges.

Successful exploitation of the vulnerability may result in system compromise.

Mitigation
Update to version 1.2.1. or 1.3.0.

Vulnerable software versions

QNAP Proxy Server: 1.0.2 - 1.2.0

External links
http://www.qnap.com/en/security-advisory/nas-201806-01

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in QNAP Proxy Server