From malwarebytes.com
QNAP has published a security advisory about two critical vulnerabilities that could allow remote attackers to execute commands via a network.
One of the vulnerabilities affects the QTS and QuTS operating systems (OS) for QNAP’s network attached storage systems (NAS). The second one can be found in versions of QTS, the Multimedia Console, and the Media Streaming add-on.