Download PDF version Contact company

QNAP® Systems Inc. recently announced firmware updates for Turbo NAS systems with vulnerability to the OpenSSL Heartbleed bug (CVE-2014-0160). The operating systems vulnerable to Heartbleed are QTS versions 4.0 and 4.1. Versions 3.8 and earlier use a different version of OpenSSL and are not affected by the OpenSSL Heartbleed bug.

As described on the Common Vulnerabilities and Exposures website, the OpenSSL 1.0.1 TLS and DTLS implementation, before 1.0.1g, does not properly process Heartbeat Extension packets which allow remote attackers to obtain sensitive information by reading private keys (aka the Heartbleed bug).

“We strongly urge users of vulnerable Turbo NAS systems to update their firmware,” said Jason Hsu, Product Manager of QNAP. “Users are also recommended to contact their SSL providers to regenerate their SSL CSR/keys for server protection.

Download PDF version Download PDF version

Related videos

Enhanced security with S617 video door station

Enhanced security with S617 video door station
Remote Guarding Video Series Part 1: Overview and Basics.

Remote Guarding Video Series Part 1: Overview and Basics.
Remote Guarding Video Series Part 2: System Design

Remote Guarding Video Series Part 2: System Design

In case you missed it

Security predictions 2025: AI, drones, and retail innovations
Security predictions 2025: AI, drones, and retail innovations

With the year 2025 stretched out before us, there are many techniques one could use to predict what will happen in the new year. You might analyse historical data and analyse futur...

2024 was a big year for M&A in the security market
2024 was a big year for M&A in the security market

Big news on the mergers and acquisitions (M&A) front is closing out 2024, a year in which several shifts changed the face of the physical security manufacturer community. Ann...

Anviz Global expands palm vein tech for security
Anviz Global expands palm vein tech for security

The pattern of veins in the hand contains unique information that can be used for identity. Blood flowing through veins in the human body can absorb light waves of specific wavelen...

Featured white papers
The key to unlocking K12 school safety grants

The key to unlocking K12 school safety grants

Download
5 surprising findings from OT vulnerability assessments

5 surprising findings from OT vulnerability assessments

Download
Physical access control

Physical access control

Download
Honeywell GARD USB threat report 2024

Honeywell GARD USB threat report 2024

Download
Palm vein recognition

Palm vein recognition

Download
Quick poll
What is the most significant challenge facing smart building security today?
More product news
SICNT releases MASHEN N2, its 4 and 8 channels super mini NVR

SICNT releases MASHEN N2, its 4 and 8 channels super mini NVR
Dahua expands its Eco-Savvy 3- Megapixel 5000-series network cameras

Dahua expands its Eco-Savvy 3- Megapixel 5000-series network cameras
Dahua launches its 3MP Ultra-Smart network camera, DH-IPC-8000

Dahua launches its 3MP Ultra-Smart network camera, DH-IPC-8000
Featured products
Climax Mobile Lite: Advanced Personal Emergency Response System (PERS)

Climax Mobile Lite: Advanced Personal Emergency Response System (PERS)
Milesight 4x5MP AI Multi-Directional Camera

Milesight 4x5MP AI Multi-Directional Camera
Verkada GC31 Cellular Gateway for Seamless Device Connectivity

Verkada GC31 Cellular Gateway for Seamless Device Connectivity