Music Station Security Vulnerabilities and Issues — Music Station CVE List

Lucene search

QnapMusic Station

4 matches found

CVE•added 2017/10/06 6:29 p.m.•41 views

CVE-2017-13069

QNAP discovered a number of command injection vulnerabilities found in Music Station versions 4.8.6 (for QTS 4.2.x), 5.0.7 (for QTS 4.3.x), and earlier. If exploited, these vulnerabilities may allow a remote attacker to run arbitrary commands on the NAS.

9.8CVSS9.8AI score0.0573EPSS

CVE•added 2019/12/04 5:16 p.m.•35 views

CVE-2018-0729

This command injection vulnerability in Music Station allows attackers to execute commands on the affected device. To fix the vulnerability, QNAP recommend updating Music Station to their latest versions.

9.8CVSS9.8AI score0.04109EPSS

CVE•added 2020/11/02 4:15 p.m.•33 views

CVE-2018-19950

If exploited, this command injection vulnerability could allow remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. Music Station versions prior to 5.1.13; versions prior to 5.2.9; versions prior to 5.3.11.

9.8CVSS9.7AI score0.03358EPSS

CVE•added 2018/09/14 1:0 p.m.•31 views

CVE-2018-0718

Command injection vulnerability in Music Station 5.1.2 and earlier versions in QNAP QTS 4.3.3 and 4.3.4 could allow remote attackers to run arbitrary commands in the compromised application.

9.8CVSS9.7AI score0.06016EPSS