VYPR

Music Station

by QNAP Systems Inc.

CVEs (4)

  • CVE-2018-19950CriNov 2, 2020
    risk 0.64cvss 9.8epss 0.02

    If exploited, this command injection vulnerability could allow remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. Music Station versions prior to 5.1.13; versions prior to 5.2.9; versions prior to 5.3.11.

  • CVE-2018-19952HigNov 2, 2020
    risk 0.49cvss 7.5epss 0.01

    If exploited, this SQL injection vulnerability could allow remote attackers to obtain application information. This issue affects: QNAP Systems Inc. Music Station versions prior to 5.1.13; versions prior to 5.2.9; versions prior to 5.3.11.

  • CVE-2020-36197HigMay 13, 2021
    risk 0.48cvss 7.1epss 0.18

    An improper access control vulnerability has been reported to affect earlier versions of Music Station. If exploited, this vulnerability allows attackers to compromise the security of the software by gaining privileges, reading sensitive information, executing commands, evading…

  • CVE-2018-19951MedNov 2, 2020
    risk 0.40cvss 6.1epss 0.01

    If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code. This issue affects: QNAP Systems Inc. Music Station versions prior to 5.1.13; versions prior to 5.2.9; versions prior to 5.3.11.