CVE-2020-2509: QNAP Network-Attached Storage (NAS) Command Injection
QNAP Network-Attached Storage (NAS) Command Injection Vulnerability. QNAP NAS devices contain a command injection vulnerability which could allow attackers to perform remote code execution.
- CISA KEV-listed (remediation due 2022-05-02)
- EPSS 84.0% (99.3% percentile)