COOEY // HUBcompliance · community · intelligence

FAIL › dossier

Network Attached Storage (NAS) product

4
failure events
0
zero-days
1
RCEs
4
on KEV
4
critical
95
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 4 events

DateEventSevFlagsShameSummary
2022-05-24 CVE-2018-19949 critical ⚡RCE ⌖KEV 95 A command injection vulnerability affecting QNAP NAS File Station could allow remote attackers to run commands.
2022-05-24 CVE-2018-19943 critical ⌖KEV 80 A cross-site scripting vulnerability affecting QNAP NAS File Station could allow remote attackers to inject malicious code.
2022-05-24 CVE-2018-19953 critical ⌖KEV 80 A cross-site scripting vulnerability affecting QNAP NAS File Station could allow remote attackers to inject malicious code.
2022-03-31 CVE-2021-28799 critical ⌖KEV 80 QNAP NAS running HBS 3 contains an improper authorization vulnerability which can allow remote attackers to log in to a device.