Synology, QNAP, and WD Warn Users about Hacking Contest Vulnerabilities

10
Synology_ QNAP_ and WD Warn Users about Hacking Contest Vulnerabilities

Synology, QNAP, and Western Digital (WD) have issued advisories to their customers concerning multiple major Netatalk flaws that were discovered during a recent hacking competition.

The flaws were revealed at the Zero Day Initiative’s Pwn2Own Austin hacking competition in November 2021, where contestants competed for more than 1 million USD by hacking routers, printers, smart gadgets, cellphones, and Network-attached Storage (NAS) devices.

Many of the issues can be exploited remotely without authentication for arbitrary code execution, allowing an attacker to take complete control of the targeted device. With the release of version 3.1.13 on March 22, Netatalk developers addressed seven vulnerabilities.

Read More: https://www.securityweek.com/synology-qnap-wd-warn-users-about-vulnerabilities-exploited-hacking-contest