Threat Advisories - NVD Disclosed May 13, 2021

CVE-2021-28799

QNAP NAS HBS 3 Unauthorized Access Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

An improper authorization vulnerability in QNAP NAS devices using HBS 3 allows remote attackers to log in. This can lead to unauthorized access to sensitive data stored on the devices, presenting a significant business risk.

NVD published: May 13, 2021 • CISA KEV