Network-attached storage (NAS) appliance maker QNAP said it’scurrentlyinvestigatingtwo recently patched security flaws in OpenSSL to determine their potential impact, adding it will release security updates should its products turn out to be vulnerable. Tracked as CVE-2021-3711 (CVSS score: 7.5) and CVE-2021-3712 (CVSS score: 4.4), theweaknessesconcern a high-severity buffer overflow in SM2