CVE-2020-2509

CRITICAL KEV RANSOMWARE

Qnap Qts < 4.2.6 - Command Injection

Title source: rule

Description

A command injection vulnerability has been reported to affect QTS and QuTS hero. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised application. We have already fixed this vulnerability in the following versions: QTS 4.5.2.1566 Build 20210202 and later QTS 4.5.1.1495 Build 20201123 and later QTS 4.3.6.1620 Build 20210322 and later QTS 4.3.4.1632 Build 20210324 and later QTS 4.3.3.1624 Build 20210416 and later QTS 4.2.6 Build 20210327 and later QuTS hero h4.5.1.1491 build 20201119 and later

Exploits (1)

nomisec WORKING POC 14 stars

by jbaines-r7 · remote

https://github.com/jbaines-r7/overkill

View Code ZIP pw:eip

References (2)

[Vendor Advisory] https://www.qnap.com/en/security-advisory/qsa-21-05

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-2509

Scores

CVSS v3 9.8

EPSS 0.8396

EPSS Percentile 99.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-04-11

VulnCheck KEV 2022-04-11

InTheWild.io 2021-04-23

ENISA EUVD EUVD-2020-22302

Ransomware Use Confirmed

CWE

CWE-78 CWE-77

Status published

Products (36)

qnap/qts 4.2.6 (10 CPE variants)

qnap/qts 4.3.3.0174

qnap/qts 4.3.3.0868

qnap/qts 4.3.3.0998

qnap/qts 4.3.3.1051

qnap/qts 4.3.3.1098

qnap/qts 4.3.3.1161

qnap/qts 4.3.3.1252

qnap/qts 4.3.3.1315

qnap/qts 4.3.3.1386

... and 26 more

Published Apr 17, 2021

KEV Added Apr 11, 2022

Tracked Since Feb 18, 2026