CVE-2018-0708

HIGH

QNAP Q'center < 1.7.1063 - Authenticated OS Command Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2018-0708. PoCs published by Core Security, ntkernel0, ntkernel.

AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in QNAP Qcenter Virtual Appliance, including privilege escalation via API endpoint exposure of admin credentials and command injection in password change and network configuration functionalities.

Description

Command injection vulnerability in networking of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Core Security · textwebappshardware
https://www.exploit-db.com/exploits/45015

The exploit demonstrates multiple vulnerabilities in QNAP Qcenter Virtual Appliance, including privilege escalation via API endpoint exposure of admin credentials and command injection in password change and network configuration functionalities.

Classification
Working Poc 100%
Attack Type
Rce | Lpe | Info Leak
Complexity
Moderate
Reliability
Reliable
Target: QNAP Qcenter Virtual Appliance Version 1.6.1056 (20170825), 1.6.1075 (20171123)
Auth required
Prerequisites: Authenticated access to the Qcenter web console · Base64 encoding for password fields
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 1 stars
by ntkernel0 · poc
https://github.com/ntkernel0/CVE-2019-0708

This repository contains multiple proof-of-concept exploits for CVE-2019-0708 (BlueKeep), a critical RCE vulnerability in Microsoft Remote Desktop Services. The exploits include DoS and RCE capabilities, targeting unpatched Windows systems via crafted RDP packets.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Microsoft Windows Remote Desktop Services (RDP)
No auth needed
Prerequisites: Network access to target RDP service · Unpatched Windows system (pre-May 2019 updates)
devstral-2 · analyzed Feb 16, 2026 Full analysis →
gitlab WORKING POC
by ntkernel · poc
https://gitlab.com/ntkernel/CVE-2019-0708

This repository contains functional exploit code for CVE-2019-0708 (BlueKeep), a critical RCE vulnerability in Microsoft Remote Desktop Services. The PoC includes RDP protocol handling, encryption/decryption logic, and packet crafting to trigger the vulnerability.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Complex
Reliability
Reliable
Target: Microsoft Remote Desktop Services (RDP)
No auth needed
Prerequisites: Network access to target RDP service · Python environment with required dependencies
devstral-2 · analyzed Feb 23, 2026 Full analysis →

References (6)

Core 6
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/45015/
Exploit, Mailing List, Third Party Advisory mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2018/Jul/45
Exploit, Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
https://www.securityfocus.com/archive/1/542141/100/0/threaded

Scores

CVSS v3 8.8
EPSS 0.2633
EPSS Percentile 97.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-78
Status published
Products (1)
qnap/q\'center < 1.7.1063
Published Jul 17, 2018
Tracked Since Feb 18, 2026