EIP-2026-101414

PRE-CVE

QNAP Transcode Server - Command Execution (Metasploit)

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101414. PoCs published by Metasploit.

AI-analyzed exploit summary This Metasploit module exploits an unauthenticated remote command injection vulnerability in QNAP NAS devices via the transcoding server on port 9251. It uses the 'rmfile' command to execute arbitrary commands, with support for staged payloads.

Description

QNAP Transcode Server - Command Execution (Metasploit)

Exploits (1)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotehardware

https://www.exploit-db.com/exploits/42587

View Code ZIP pw:eip

This Metasploit module exploits an unauthenticated remote command injection vulnerability in QNAP NAS devices via the transcoding server on port 9251. It uses the 'rmfile' command to execute arbitrary commands, with support for staged payloads.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: QNAP NAS (firmware version 4.3.3.0262)

No auth needed

Prerequisites: Network access to port 9251 on the target QNAP device

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026