CVE-2020-36198 : A command injection vulnerability has been reported to affect certain versions o

A command injection vulnerability has been reported to affect certain versions of Malware Remover. If exploited, this vulnerability allows remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. Malware Remover versions prior to 4.6.1.0. This issue does not affect: QNAP Systems Inc. Malware Remover 3.x.

Published 2021-05-13 03:15:07

Updated 2022-04-26 16:04:46

Source QNAP Systems, Inc.

View at NVD, CVE.org

Products affected by CVE-2020-36198

Qnap » Malware Remover
Versions from including (>=) 4.5.4.0 and before (<) 4.6.1.0
cpe:2.3:a:qnap:malware_remover:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2020-36198

EPSS FAQ

0.91%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 74 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-36198

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete
6.7	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	0.8	5.9	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
6.7	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	0.8	5.9	QNAP Systems, Inc.
Attack Vector: Local Attack Complexity: Low Privileges Required: High User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2020-36198

CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.

Assigned by: security@qnapsecurity.com.tw (Secondary)
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
Assigned by:
- nvd@nist.gov (Primary)
- security@qnapsecurity.com.tw (Secondary)

References for CVE-2020-36198

http://packetstormsecurity.com/files/162849/QNAP-MusicStation-MalwareRemover-File-Upload-Command-Injection.html

QNAP MusicStation / MalwareRemover File Upload / Command Injection ≈ Packet Storm
Patch;Third Party Advisory;VDB Entry

CVEs referencing this url
https://www.qnap.com/zh-tw/security-advisory/qsa-21-16

Command Injection Vulnerability in Malware Remover - Security Advisory | QNAP
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-592/

ZDI-21-592 | Zero Day Initiative
Third Party Advisory;VDB Entry

Jump to

Vulnerability Details : CVE-2020-36198

Products affected by CVE-2020-36198

Exploit prediction scoring system (EPSS) score for CVE-2020-36198

CVSS scores for CVE-2020-36198

CWE ids for CVE-2020-36198

References for CVE-2020-36198