{"id":131924,"date":"2022-05-07T01:29:18","date_gmt":"2022-05-07T03:29:18","guid":{"rendered":"https:\/\/teknomers.com\/fr\/qnap-publie-des-correctifs-de-micrologiciel-pour-9-nouvelles-failles-affectant-les-peripheriques-nas\/"},"modified":"2022-05-07T01:29:37","modified_gmt":"2022-05-07T03:29:37","slug":"qnap-publie-des-correctifs-de-micrologiciel-pour-9-nouvelles-failles-affectant-les-peripheriques-nas","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/qnap-publie-des-correctifs-de-micrologiciel-pour-9-nouvelles-failles-affectant-les-peripheriques-nas\/","title":{"rendered":"QNAP publie des correctifs de micrologiciel pour 9 nouvelles failles affectant les p\u00e9riph\u00e9riques NAS"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both\"><\/div>\n<p>QNAP, fabricant ta\u00efwanais de p\u00e9riph\u00e9riques de stockage en r\u00e9seau (NAS), a publi\u00e9 vendredi des mises \u00e0 jour de s\u00e9curit\u00e9 pour corriger neuf faiblesses de s\u00e9curit\u00e9, y compris un probl\u00e8me critique qui pourrait \u00eatre exploit\u00e9 pour prendre le contr\u00f4le d&#8217;un syst\u00e8me affect\u00e9.<\/p>\n<p>&#8220;Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 signal\u00e9e comme affectant les NVR QNAP VS Series ex\u00e9cutant QVR,&#8221; QNAP <a rel=\"nofollow noopener\" href=\"https:\/\/www.qnap.com\/en-in\/security-advisory\/qsa-22-07\" target=\"_blank\">mentionn\u00e9<\/a> dans un avis.  &#8220;Si elle est exploit\u00e9e, cette vuln\u00e9rabilit\u00e9 permet \u00e0 des attaquants distants d&#8217;ex\u00e9cuter des commandes arbitraires.&#8221;<\/p>\n<p>Suivi comme <a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2022-27588\" target=\"_blank\"><b>CVE-2022-27588<\/b><\/a>  (score CVSS : 9,8), la vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans QVR 5.1.6 build 20220401 et versions ult\u00e9rieures.  Le centre de coordination de l&#8217;\u00e9quipe japonaise d&#8217;intervention d&#8217;urgence informatique (JPCERT\/CC) est cr\u00e9dit\u00e9 d&#8217;avoir signal\u00e9 la faille.<\/p>\n<p>Outre la lacune critique, QNAP a \u00e9galement r\u00e9solu trois bogues de gravit\u00e9 \u00e9lev\u00e9e et cinq bogues de gravit\u00e9 moyenne dans son logiciel &#8211;<\/p>\n<p><\/p>\n<\/div>\n<p><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2022\/05\/qnap-releases-firmware-patches-for-9.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>QNAP, fabricant ta\u00efwanais de p\u00e9riph\u00e9riques de stockage en r\u00e9seau (NAS), a publi\u00e9 vendredi des mises \u00e0 jour de s\u00e9curit\u00e9 pour corriger neuf faiblesses de s\u00e9curit\u00e9, y compris un probl\u00e8me critique qui pourrait \u00eatre exploit\u00e9 pour prendre le contr\u00f4le d&#8217;un syst\u00e8me affect\u00e9. &#8220;Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 signal\u00e9e comme affectant les NVR QNAP VS Series ex\u00e9cutant QVR,&#8221; [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":131925,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[34911,4168,15954,4158,4165,4161,133,4806,4157,4159,4171,4170,65,4167,21601,4160,5266,120,4163,4162,5265,185,2212,27510,4172,4169,4166,4164],"class_list":["post-131924","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-affectant","tag-comment-pirater","tag-correctifs","tag-cyber-actualites","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-des","tag-failles","tag-lactualite-de-la-cybersecurite","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-la-securite-des-informations","tag-les","tag-logiciel-malveillant-de-ransomware","tag-micrologiciel","tag-mises-a-jour-de-la-cybersecurite","tag-nas","tag-nouvelles","tag-nouvelles-de-piratage","tag-nouvelles-de-pirates","tag-peripheriques","tag-pour","tag-publie","tag-qnap","tag-securite-informatique","tag-securite-internet","tag-violation-de-donnees","tag-vulnerabilite-logicielle"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/131924","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=131924"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/131924\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/131925"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=131924"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=131924"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=131924"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}