{"id":5222,"date":"2023-08-05T12:30:04","date_gmt":"2023-08-05T10:30:04","guid":{"rendered":"https:\/\/sajberinfo.com\/?p=5222"},"modified":"2023-08-05T12:30:04","modified_gmt":"2023-08-05T10:30:04","slug":"qnap-ranjivost-omogucava-pokretanje-dos-napada","status":"publish","type":"post","link":"https:\/\/sajberinfo.com\/en\/2023\/08\/05\/qnap-ranjivost-omogucava-pokretanje-dos-napada\/","title":{"rendered":"QNAP ranjivost omogu\u0107ava pokretanje DoS napada"},"content":{"rendered":"<p><span style=\"font-size: 14pt;\"><em>QNAP<\/em> operativni sistemi su robusne softverske platforme prilago\u0111ene korisniku koje pokre\u0107u <em>NAS<\/em> i <em>NVR<\/em> ure\u0111aje, a to su <em>QTS<\/em>, QuTS hero, <em>QuTScloud<\/em> i <em>QES<\/em> operativni sistemi. S obzirom na \u0161iroku upotrebu ovih operativnih sistema i ure\u0111aja, velika ili kriti\u010dna bezbjednosna gre\u0161ka mo\u017ee lako da poremeti kompletnu mre\u017enu infrastrukturu.<\/span><\/p>\n<div id=\"attachment_5225\" style=\"width: 1034px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-5225\" class=\"size-full wp-image-5225\" src=\"https:\/\/sajberinfo.com\/wp-content\/uploads\/2023\/08\/Qnap-DoS-Attack.jpg\" alt=\"DoS Attack\" width=\"1024\" height=\"665\" srcset=\"https:\/\/sajberinfo.com\/wp-content\/uploads\/2023\/08\/Qnap-DoS-Attack.jpg 1024w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2023\/08\/Qnap-DoS-Attack-300x195.jpg 300w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2023\/08\/Qnap-DoS-Attack-768x499.jpg 768w, https:\/\/sajberinfo.com\/wp-content\/uploads\/2023\/08\/Qnap-DoS-Attack-18x12.jpg 18w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><p id=\"caption-attachment-5225\" class=\"wp-caption-text\">QNAP ranjivost omogu\u0107ava pokretanje DoS napada; Dizajn: Sa\u0161a \u0110uri\u0107<\/p><\/div>\n<h2><span style=\"font-size: 14pt;\"><strong><em>QNAP<\/em> ranjivost <em>CVE-2022-27600<\/em><\/strong><\/span><\/h2>\n<p><span style=\"font-size: 14pt;\">Nedavno identifikovana <em>QNAP<\/em> ranjivost visokog nivoa ozbiljnosti se nalazi u vi\u0161e operativnih sistema ovog proizvo\u0111a\u010da, a ranjivost je ozna\u010dena kao: <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2020-27600\" target=\"_blank\" rel=\"nofollow noopener\"><em>CVE-2022-27600<\/em><\/a> (<em>CVSS<\/em> ocjena <em>9.8<\/em> &#8211; kriti\u010dno). Prijavljeno je da ranjivost nekontrolisane potro\u0161nje resursa i uti\u010de na vi\u0161e operativnih sistema <em>QNAP<\/em>. Ranjivost omogu\u0107ava udaljenim napada\u010dima da pokrenu napad uskra\u0107ivanja usluge (<em>DoS<\/em>).<\/span><\/p>\n<p><span style=\"font-size: 14pt;\">Dobra vest je da je ova ranjivost ispravljena u sljede\u0107im verzijama softvera:<\/span><\/p>\n<ul>\n<li><span style=\"font-size: 14pt;\"><em>QTS<\/em>: od verzije <em>5.0.1.2277 build 20230112<\/em> i novije.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\"><em>QuTS hero<\/em>: od verzije <em>h5.0.1.2277 build 20230112<\/em> i <em>h4.5.4.2374 build 20230417.<\/em><\/span><\/li>\n<li><span style=\"font-size: 14pt;\"><em>QuTScloud<\/em>: od verzije <em>c5.0.1.2374 build 20230419.<\/em><\/span><\/li>\n<li><span style=\"font-size: 14pt;\"><em>QVR Pro Appliance<\/em>: od verzije <em>2.3.1.0476.<\/em><\/span><\/li>\n<\/ul>\n<p><span style=\"font-size: 14pt;\"><em>\u00a0<\/em><\/span><\/p>\n<h3><span style=\"font-size: 14pt;\"><strong>A\u017euriranja<\/strong><\/span><\/h3>\n<p><span style=\"font-size: 14pt;\">Korisnici mogu na sljede\u0107e na\u010dine a\u017eurirati svoje ure\u0111aje:<\/span><\/p>\n<ul>\n<li><span style=\"font-size: 14pt;\">A\u017euriranje <em>QTS, QuTS hero<\/em> ili <em>QuTScloud<\/em>:<\/span><\/li>\n<\/ul>\n<ol>\n<li><span style=\"font-size: 14pt;\">Prijavite se na <em>QTS, QuTS hero<\/em> ili <em>QuTScloud<\/em> kao administrator.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Idite na <em>Control Panel &gt; System &gt; Firmware Update<\/em>.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">U okviru <em>Live Update<\/em> kliknite na <em>Check for Update<\/em>.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Sistem preuzima i instalira najnoviju dostupnu ispravku.<\/span><\/li>\n<\/ol>\n<p><span style=\"font-size: 14pt;\">Savjet: A\u017euriranje mo\u017eete preuzeti i sa <em>QNAP<\/em> Internet stranice. Idite na <em>Support &gt; Download Center<\/em>, a zatim izvr\u0161ite ru\u010dno a\u017euriranje za svoj ure\u0111aj.<\/span><\/p>\n<ul>\n<li><span style=\"font-size: 14pt;\">A\u017euriranje <em>QVP<\/em> (<em>QVR Pro Appliances<\/em>):<\/span><\/li>\n<\/ul>\n<ol>\n<li><span style=\"font-size: 14pt;\">Prijavite se na <em>QVP<\/em> kao administrator.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Idite na <em>Control Panel &gt; System Settings &gt; Firmware Update.<\/em><\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Izaberite karticu <em>Firmware<\/em> <em>Update<\/em>.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Kliknite na <em>Browse<\/em>\u2026 da otpremite najnoviju datoteku upravlja\u010dkog softvera.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Savjet: Preuzmite najnoviju datoteku upravlja\u010dkog softvera za svoj odre\u0111eni ure\u0111aj sa <a href=\"https:\/\/www.qnap.com\/go\/download\" target=\"_blank\" rel=\"noopener\">https:\/\/www.qnap.com\/go\/download<\/a>.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Kliknite na <em>Update<\/em> <em>System<\/em>.<\/span><\/li>\n<li><span style=\"font-size: 14pt;\">Sistem instalira a\u017euriranje.<\/span><\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<h4><strong><span style=\"font-size: 14pt;\">Preporuke<\/span><\/strong><\/h4>\n<p><span style=\"font-size: 14pt;\">Kompanija <em>QNAP<\/em> <a href=\"https:\/\/www.qnap.com\/en-us\/security-advisory\/qsa-23-09\" target=\"_blank\" rel=\"noopener\">preporu\u010duje<\/a> korisnicima da odmah a\u017euriraju svoje zastarele sisteme i ure\u0111aje kako bi ubla\u017eili ovu ranjivost. Bez obzira da li koristite <em>QNAP<\/em> za <em>Windows<\/em> ili jedan od <em>QNAP<\/em> operativnih sistema, informisanje o potencijalnim ranjivostima i a\u017euriranjima je klju\u010dno za odr\u017eavanje bezbjednog okru\u017eenja. Redovnim a\u017euriranjem sistema, korisnici su korak ispred sajber prijetnji, osiguravaju\u0107i da su <a href=\"https:\/\/sajberinfo.com\/en\/2023\/04\/16\/podaci-uvod-epizoda-1\/\" target=\"_blank\" rel=\"nofollow noopener\">podaci<\/a> i ure\u0111aji sigurni i bezbjedni.<\/span><\/p>","protected":false},"excerpt":{"rendered":"<p>QNAP operativni sistemi su robusne softverske platforme prilago\u0111ene korisniku koje pokre\u0107u NAS i NVR ure\u0111aje, a to su QTS, QuTS hero, QuTScloud i QES operativni sistemi. S obzirom na \u0161iroku upotrebu ovih operativnih sistema&#46;&#46;&#46;<\/p>","protected":false},"author":1,"featured_media":5225,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[386,131,132],"class_list":["post-5222","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hronike","tag-denial-of-service-dos","tag-nas","tag-qnap"],"_links":{"self":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/posts\/5222","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/comments?post=5222"}],"version-history":[{"count":0,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/posts\/5222\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/media\/5225"}],"wp:attachment":[{"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/media?parent=5222"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/categories?post=5222"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sajberinfo.com\/en\/wp-json\/wp\/v2\/tags?post=5222"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}