Video Station@* Security Vulnerabilities and Issues — Video Station@* CVE List

Lucene search

QnapVideo Station*

11 matches found

CVE•added 2022/05/05 5:15 p.m.•109 views

CVE-2021-44055

An missing authorization vulnerability has been reported to affect QNAP device running Video Station. If exploited, this vulnerability allows remote attackers to access data or perform actions that they should not be allowed to perform. We have already fixed this vulnerability in the following vers...

9.8CVSS7.4AI score0.00795EPSS

CVE•added 2022/05/05 5:15 p.m.•82 views

CVE-2021-44056

An improper authentication vulnerability has been reported to affect QNAP device running Video Station. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of Video Station: Video Station 5.5....

10CVSS8.4AI score0.00179EPSS

CVE•added 2021/06/03 3:15 a.m.•75 views

CVE-2021-28812

A command injection vulnerability has been reported to affect certain versions of Video Station. If exploited, this vulnerability allows remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. Video Station versions prior to 5.5.4 on QTS 4.5.2; versions prior to 5.5.4 ...

8.8CVSS9.1AI score0.00478EPSS

CVE•added 2023/10/13 8:15 p.m.•74 views

CVE-2023-34975

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network.QuTScloud c5.1.x is not affected. We have already fixed the vulnerability in the follo...

8.8CVSS7.8AI score0.00081EPSS

CVE•added 2024/09/06 5:15 p.m.•49 views

CVE-2023-47563

An OS command injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following version:Video Station 5.8.2 and later

8.8CVSS7.8AI score0.01297EPSS

CVE•added 2024/01/05 5:15 p.m.•43 views

CVE-2023-41287

A SQL injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow users to inject malicious code via a network. We have already fixed the vulnerability in the following version:Video Station 5.7.2 ( 2023/11/23 ) and later

8.8CVSS8.8AI score0.00131EPSS

CVE•added 2019/12/05 5:15 p.m.•42 views

CVE-2019-7184

This cross-site scripting (XSS) vulnerability in Video Station allows remote attackers to inject and execute scripts on the administrator’s management console. To fix this vulnerability, QNAP recommend updating Video Station to their latest versions.

4.8CVSS5.7AI score0.00209EPSS

CVE•added 2023/10/13 8:15 p.m.•39 views

CVE-2023-34976

A SQL injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following version:Video Station 5.7.0 ( 2023/07/27 ) and later

8.8CVSS6.1AI score0.00059EPSS

CVE•added 2024/09/06 5:15 p.m.•39 views

CVE-2023-50360

8.8CVSS8.8AI score0.00092EPSS

CVE•added 2024/01/05 5:15 p.m.•35 views

CVE-2023-41288

An OS command injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following version:Video Station 5.7.2 ( 2023/11/23 ) and later

8.8CVSS8.9AI score0.0024EPSS

CVE•added 2023/10/13 8:15 p.m.•32 views

CVE-2023-34977

A cross-site scripting (XSS) vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following version:Video Station 5.7.0 ( 2023/07/27 ) and later

5.4CVSS4.6AI score0.002EPSS