QNAP warns its NAS devices are facing a critical security flaw — but a patch is available, so update now

A patch was made available to QNAP NAS device users

March 11, 2024 · 1 min · 59 words · Jennifer Martin

Table of Contents

When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.

That flaw is tracked as CVE-2024-21899, and described as an improper authentication mechanism.

The other two vulnerabilities are tracked as CVE-2024-21900, and CVE-2024-21901.

QNAP

The former allows for arbitrary command execution, while the latter malicious SQL code injection.

ViaBleepingComputer

More from TechRadar Pro#