CVE-2018-19953 | Cybersecurity Alerts | Nexus IT Services, LLC

← Back to Cybersecurity Alerts

CVE-2018-19953

QNAP | Network Attached Storage (NAS)Added 2022-05-24Remediation Deadline 2022-06-14Active Ransomware Campaign

QNAP NAS File Station Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability affecting QNAP NAS File Station could allow remote attackers to inject malicious code.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-79

CWE-80

References

https://nvd.nist.gov/vuln/detail/CVE-2018-19953