Lucene search
QnapCVELIST:CVE-2023-47563HistorySep 06, 2024 - 4:26 p.m.
CVE-2023-47563 Video Station
2024-09-0616:26:50
CWE-77
CWE-78
qnap
www.cve.org
1
video station
command injection
vulnerability
fix
version 5.8.2
CVSS3
7.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
20.9%
An OS command injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow authenticated users to execute commands via a network.
We have already fixed the vulnerability in the following version:
Video Station 5.8.2 and later
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Video Station",
"vendor": "QNAP Systems Inc.",
"versions": [
{
"lessThan": "5.8.2",
"status": "affected",
"version": "5.8.x",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2023-47563 Video Station
2024-09-06 16:26:50
nvd
nvd
CVE-2023-47563
2024-09-06 17:15:12
cve
cve
CVE-2023-47563
2024-09-06 17:15:12
openvas
openvas
QNAP QTS Video Station Multiple Vulnerabilities (QSA-24-24)
2024-09-10 00:00:00
CVSS3
7.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
20.9%
Related for CVELIST:CVE-2023-47563