CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

The QNAP TS-239 Pro and TS-639 Pro with firmware 2.1.7 0613, 3.1.0 0627, and 3.1.1 0815 create a LUKS partition by using the AES-256 cipher in plain CBC mode, which allows local users to obtain sensitive information via a watermark attack.

Product Status

Learn more

Information not provided

References 3 Total

http://www.baseline-security.de/downloads/BSC-Qnap_Crypto_Backdoor-CVE-2009-3200.txt
external site
secunia.com: 36793
external site
third-party-advisory
securityfocus.com: 20090918 Advisory: Crypto backdoor in Qnap storage devices (CVE-2009-3200)
external site
mailing-list

Updated: 2024-08-07

This container includes required additional information provided by the CVE Program for this vulnerability.

References 3 Total

http://www.baseline-security.de/downloads/BSC-Qnap_Crypto_Backdoor-CVE-2009-3200.txt
external site
x_transferred
secunia.com: 36793
external site
third-party-advisoryx_transferred
securityfocus.com: 20090918 Advisory: Crypto backdoor in Qnap storage devices (CVE-2009-3200)
external site
mailing-listx_transferred

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: MITRE Corporation

Description

Product Status

References 3 Total

CVE Program

References 3 Total