Absolute path traversal vulnerability in cgi-bin/jc.cgi in QNAP QTS before 4.1.0 allows remote attackers to read arbitrary files via a full pathname in the f parameter.
Max CVSS
7.8
EPSS Score
0.33%
Published
2014-01-09
Updated
2016-12-31
1 vulnerabilities found