QNAP QTS < 4.2.4 - Unauthenticated Sensitive Information Exposure via uLinux.conf
QNAP QTS before 4.2.4 Build 20170313 allows local users to obtain sensitive Domain Administrator password information by reading data in an XOR format within the /etc/config/uLinux.conf configuration file.