CVE-2018-0710

HIGH

QNAP Q'center < 1.7.1063 - Authenticated OS Command Injection via SSH

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-0710. PoCs published by Core Security.

AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in QNAP Qcenter Virtual Appliance, including privilege escalation via API endpoint exposure of admin credentials and command injection in password change and network configuration functionalities.

Description

Command injection vulnerability in SSH of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Core Security · textwebappshardware

https://www.exploit-db.com/exploits/45015

View Code ZIP pw:eip

The exploit demonstrates multiple vulnerabilities in QNAP Qcenter Virtual Appliance, including privilege escalation via API endpoint exposure of admin credentials and command injection in password change and network configuration functionalities.

Classification

Working Poc 100%

Attack Type

Rce | Lpe | Info Leak

Complexity

Moderate

Reliability

Reliable

Target: QNAP Qcenter Virtual Appliance Version 1.6.1056 (20170825), 1.6.1075 (20171123)

Auth required

Prerequisites: Authenticated access to the Qcenter web console · Base64 encoding for password fields

MITRE ATT&CK