CVSS: 9.8EPSS: 0%CPEs: 28EXPL: 0CVE-2021-34345 – Stack Based Overflow Vulnerability in NVR Storage Expansion
https://notcve.org/view.php?id=CVE-2021-34345
A stack buffer overflow vulnerability has been reported to affect QNAP device running NVR Storage Expansion. If exploited, this vulnerability allows attackers to execute arbitrary code. We have already fixed this vulnerability in the following versions of NVR Storage Expansion: NVR Storage Expansion 1.0.6 ( 2021/08/03 ) and later Se ha reportado de una vulnerabilidad de desbordamiento del búfer de la pila que afecta al dispositivo QNAP que ejecuta NVR Storage Expansion. Si es explotado, esta vulnerabilidad permite a atacantes ejecutar código arbitrario. Ya hemos corregido esta vulnerabilidad en las siguientes versiones de NVR Storage Expansion: NVR Storage Expansion 1.0.6 ( 2021/08/03 ) y posteriores • https://www.qnap.com/en/security-advisory/qsa-21-36 • CWE-787: Out-of-bounds Write •