{"id":4573,"date":"2023-03-31T20:31:14","date_gmt":"2023-03-31T19:31:14","guid":{"rendered":"https:\/\/sajberinfo.com\/?p=4573"},"modified":"2023-04-11T21:47:29","modified_gmt":"2023-04-11T20:47:29","slug":"qnap-ispravlja-sudo-ranjivost","status":"publish","type":"post","link":"https:\/\/sajberinfo.com\/en\/2023\/03\/31\/qnap-ispravlja-sudo-ranjivost\/","title":{"rendered":"QNAP ispravlja Sudo ranjivost"},"content":{"rendered":"<p><span style=\"font-size: 14pt;\">Tajvanski proizvo\u0111a\u010d <em>QNAP<\/em> ispravlja <em>Sudo<\/em> ranjivost <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2023-22809\" target=\"_blank\" rel=\"noopener\"><em>CVE-2023-22809<\/em><\/a> u svojim <em>NAS<\/em> ure\u0111ajima, koja je ozna\u010dena kao ranjivost visokog rizika.<\/span><\/p>\n<div id=\"attachment_4576\" style=\"width: 1034px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-4576\" class=\"size-full wp-image-4576\" src=\"https:\/\/sajberinfo.com\/wp-content\/uploads\/2023\/03\/QNAP-Sudo.jpg\" alt=\"QNAP Sudo\" width=\"1024\" height=\"651\" srcset=\"https:\/\/sajberinfo.com\/wp-content\/uploads\/2023\/03\/QNAP-Sudo.jpg 1024w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2023\/03\/QNAP-Sudo-300x191.jpg 300w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2023\/03\/QNAP-Sudo-768x488.jpg 768w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2023\/03\/QNAP-Sudo-18x12.jpg 18w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><p id=\"caption-attachment-4576\" class=\"wp-caption-text\"><em>QNAP ispravlja Sudo ranjivost; Dizajn: Sa\u0161a \u0110uri\u0107<\/em><\/p><\/div>\n<h2><strong><span style=\"font-size: 14pt;\">Ranjivost<\/span><\/strong><\/h2>\n<p><span style=\"font-size: 14pt;\">Ranjivost <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2023-22809\" target=\"_blank\" rel=\"noopener\"><em>CVE-2023-22809<\/em><\/a> u <em>QNAP NAS<\/em> ure\u0111ajima je ozna\u010dena kao veoma opasna sa <em>CVSS<\/em> <em>v3<\/em> ocjenom 7.8. Sigurnosni istra\u017eiva\u010di iz kompanije <em>Synacktiv<\/em> koji su otkrili ovu ranjivost je <a href=\"https:\/\/www.synacktiv.com\/sites\/default\/files\/2023-01\/sudo-CVE-2023-22809.pdf\" target=\"_blank\" rel=\"noopener\">opisuju<\/a> kao ranjivost koja zaobilazi <em>sudoers<\/em> polisu \u2013 ona sadr\u017ei skup pravila koja odre\u0111uju koji su korisnici ili grupe s povlasticama <em>sudo<\/em>, kao i nivo privilegija \u2013 u <em>Sudo<\/em> verziji <em>1.9.12p1<\/em> kada se koristi komandu <em>sudoedit<\/em>.<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Napada\u010di koji uspje\u0161no iskoriste ovu ranjivost na <em>Sudo<\/em> verzijama od <em>1.8.0<\/em> do <em>1.9.12p1<\/em> mogu dobiti pro\u0161irene privilegije da vr\u0161e neovla\u0161teno ure\u0111ivanje datoteka nakon dodavanja proizvoljnih unosa na listu za obradu.<\/span><\/p>\n<p>&nbsp;<\/p>\n<blockquote><p><span style=\"font-size: 14pt;\">\u201e<em>Sudo koristi promjenljive okru\u017eenja koje daje korisnik da bi svojim korisnicima omogu\u0107io da izaberu ure\u0111iva\u010d po njihovom izboru. Sadr\u017eaj ovih promjenljivih pro\u0161iruje stvarnu komandu proslije\u0111enu funkciji sudo_edit(). Me\u0111utim, ovaj drugi se oslanja na prisustvo argumenta \u2014 da bi odredio listu datoteka za ure\u0111ivanje. Injekcija dodatnog \u2014 argumenta u jednu od ovla\u0161\u0107enih varijabli okru\u017eenja mo\u017ee da promjeni ovu listu i da dovede do eskalacije privilegija ure\u0111ivanjem bilo koje druge datoteke sa privilegijama RunAs user. Ovaj problem se javlja nakon validacije politike sudoers.<\/em><\/span><\/p>\n<p style=\"text-align: right;\"><span style=\"font-size: 14pt;\"><em>&#8211; <\/em><a href=\"https:\/\/www.synacktiv.com\/sites\/default\/files\/2023-01\/sudo-CVE-2023-22809.pdf\" target=\"_blank\" rel=\"noopener\"><em>Sinacktiv<\/em><\/a><em> &#8211; <\/em><\/span><\/p>\n<\/blockquote>\n<p>&nbsp;<\/p>\n<h3><strong><span style=\"font-size: 14pt;\"><em>QNAP <\/em>ranjivost<\/span><\/strong><\/h3>\n<p><span style=\"font-size: 14pt;\">Ranjivost poga\u0111a <em>QTS<\/em>, <em>QuTS<\/em> <em>hero<\/em>, <em>QuTScloud i<\/em> <em>QVP<\/em> (<em>QVR<\/em> <em>Pro<\/em> ure\u0111aji) NAS operativne sisteme objavila je kompanija <em>QNAP.<\/em> Kompanija je ve\u0107 objavila a\u017euriranja\u00a0 pa su sljede\u0107e verzije sistema bezbjedne:<\/span><\/p>\n<p>&nbsp;<\/p>\n<ul>\n<li><span style=\"font-size: 14pt;\"><em>QTS 5.0.1.2346 build 20230322<\/em> i novije.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\"><em>QuTS hero h5.0.1.2348 build 20230324<\/em> i novije.<\/span><\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><span style=\"font-size: 14pt;\">Kompanija <em>QNAP<\/em> jo\u0161 uvijek radi na a\u017euriranju za <em>QuTScloud<\/em> i <em>QVP<\/em> <em>NAS<\/em> operativne sisteme.<\/span><\/p>\n<p>&nbsp;<\/p>\n<blockquote><p><span style=\"font-size: 14pt;\">\u201c<em>QNAP<\/em> hitno ispravlja ranjivosti u <em>QuTScloud<\/em> i <em>QVP<\/em>.\u00a0 Molimo vas da redovno provjeravate stranicu za a\u017euriranja i odmah a\u017eurirajte svoj operativni sistem na najnoviju preporu\u010denu verziju \u010dim bude dostupna.\u201c<\/span><\/p>\n<p style=\"text-align: right;\"><span style=\"font-size: 14pt;\">&#8211; <a href=\"https:\/\/www.qnap.com\/en\/security-advisory\/qsa-23-11\" target=\"_blank\" rel=\"noopener\"><em>QNAP<\/em><\/a> &#8211;<\/span><\/p>\n<\/blockquote>\n<p><strong><span style=\"font-size: 14pt;\">Za\u0161tita ure\u0111aja<\/span><\/strong><\/p>\n<p><span style=\"font-size: 14pt;\">Kompanija <em>QNAP<\/em> preporu\u010duje korisnicima da uvijek a\u017euriraju svoje ure\u0111aja na zadnju dostupnu verziju softvera. To mogu uraditi na na sljede\u0107i na\u010din za <em>QTS<\/em>, <em>QuTS<\/em> <em>hero<\/em> ili <em>QuTScloud<\/em>:<\/span><\/p>\n<p>&nbsp;<\/p>\n<ol>\n<li><span style=\"font-size: 14pt;\">Prijaviti se na <em>QTS, QuTS hero<\/em> ili <em>QuTScloud<\/em> kao administrator.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Oti\u0107i na <em>Control Panel &gt; System &gt; Firmware Update<\/em>.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">U opciji <em>Live<\/em> <em>Update<\/em> kliknuti na <em>Check<\/em> <em>for<\/em> <em>Update<\/em>.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Sistem \u0107e preuzeti i izvr\u0161iti a\u017euriranje ure\u0111aja.<\/span><\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<p><span style=\"font-size: 14pt;\">Korisnici koji imaju potrebu da to urade ru\u010dno, mogu to uraditi preko <em>QNAP<\/em> Internet stranice odlaskom na <em>Support<\/em> &gt; <em>Download<\/em> <em>Center<\/em>.<\/span><\/p>\n<p>&nbsp;<\/p>\n<p><span style=\"font-size: 14pt;\">A\u017euriranje <em>QVP<\/em> (<em>QVR<\/em> <em>Pro<\/em> ure\u0111aja)<\/span><\/p>\n<ol>\n<li><span style=\"font-size: 14pt;\">Prijaviti se na <em>QVP<\/em> kao administrator.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Oti\u0107i na <em>Control Panel &gt; System &gt; Firmware Update<\/em>.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Kliknuti na <em>Firmware<\/em> <em>Update<\/em> jezi\u010dak.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Onda na <em>Browse<\/em>\u2026 kako bi se u\u010ditao zadnje dostupno a\u017euriranje.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">A\u017euriranje se prethodno treba preuzeti za odre\u0111eni ure\u0111aj sa <a href=\"https:\/\/www.qnap.com\/go\/download\" target=\"_blank\" rel=\"noopener\">https:\/\/www.qnap.com\/go\/download<\/a>.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Onda kliknuti na <em>Update System<\/em>.<\/span><\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<p><span style=\"font-size: 14pt;\">Kompanija <em>QNAP<\/em> nema saznanja da se ova ranjivost aktivno Iskori\u0161tava u kiberneti\u010dkom prostoru, ali zbog opasnosti koju ova ranjivost predstavlja korisnicima se savjetuje da sigurnosna a\u017euriranja primjene \u0161to prije.<\/span><\/p>\n<p>&nbsp;<\/p>\n<p><span style=\"font-size: 14pt;\">Zlonamjerni napada\u010di imaju ve\u0107 du\u017eu istoriju napada na <em>QNAP<\/em> <em>NAS<\/em> ure\u0111aje, pa su skora\u0161nji napadi uklju\u010divali <a href=\"https:\/\/sajberinfo.com\/en\/2021\/12\/08\/qnap-upozorava-na-novi-crypto-miner\/\" target=\"_blank\" rel=\"nofollow noopener\"><em>crypto-mining<\/em> zlonamjerni softver<\/a>, <a href=\"https:\/\/sajberinfo.com\/en\/2021\/12\/28\/porast-broja-napada-ech0raix-ransomware-a-na-qnap-nas-uredjaje\/\" target=\"_blank\" rel=\"nofollow noopener\"><em>eCh0raix ransomware<\/em><\/a>, <a href=\"https:\/\/sajberinfo.com\/en\/2022\/01\/08\/qnap-upozorava-korisnike-da-sklone-nas-uredjaje-sa-interneta\/\" target=\"_blank\" rel=\"nofollow noopener\"><em>brute-force<\/em> napade<\/a>, <a href=\"https:\/\/sajberinfo.com\/en\/2022\/01\/26\/deadbolt-ransomware-napada-qnap-nas-uredjaje\/\" target=\"_blank\" rel=\"nofollow noopener\"><em>DeadBolt ransomware<\/em><\/a>, <a href=\"https:\/\/sajberinfo.com\/en\/2022\/03\/15\/dirty-pipe-ranjivost-pogadja-vecinu-qnap-uredjaja\/\" target=\"_blank\" rel=\"nofollow noopener\"><em>Dirty Pipe <\/em>ranjivost<\/a> i <a href=\"https:\/\/sajberinfo.com\/en\/2023\/02\/01\/qnap-nas-sql-kriticna-ranjivost\/\" target=\"_blank\" rel=\"nofollow noopener\"><em>SQL<\/em> kriti\u010dnu ranjivost<\/a>. Imaju\u0107i ovo u vidu korisnici treba ozbiljno da shvate prijetnju i a\u017euriraju svoje ure\u0111aje, kao i da <a href=\"https:\/\/www.qnap.com\/en\/security-advisory\/nas-201911-01\" target=\"_blank\" rel=\"noopener\">prate savjete kompanije <em>QNAP<\/em><\/a> kako da osiguraju svoje ure\u0111aje.<\/span><\/p>","protected":false},"excerpt":{"rendered":"<p>Tajvanski proizvo\u0111a\u010d QNAP ispravlja Sudo ranjivost CVE-2023-22809 u svojim NAS ure\u0111ajima, koja je ozna\u010dena kao ranjivost visokog rizika. Ranjivost Ranjivost CVE-2023-22809 u QNAP NAS ure\u0111ajima je ozna\u010dena kao veoma opasna sa CVSS v3 ocjenom&#46;&#46;&#46;<\/p>","protected":false},"author":1,"featured_media":4576,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[131,132,324,126],"class_list":["post-4573","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hronike","tag-nas","tag-qnap","tag-sudo","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/posts\/4573","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/comments?post=4573"}],"version-history":[{"count":0,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/posts\/4573\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/media\/4576"}],"wp:attachment":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/media?parent=4573"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/categories?post=4573"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/tags?post=4573"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}