Network-attached storage (NAS) maker QNAP has patched its QVR video management system against two critical-severity issues that could be exploited to run arbitrary commands. The two critical bugs could allow a remote attacker to run commands on vulnerable systems that could lead to taking full control of the device. It is unclear if any of the bugs are being exploited been exploited. The company has released a software update (QVR 5.1.5 build 20210803) to fix the bugs.”]

