CVE-2017-7876by Jeremyin Security Bulletinson Posted on June 15, 2017 QNAP QTS before 4.2.6 build 20170517 allows command injection.