Vulnerability Details CVE-2020-2493
This cross-site scripting vulnerability in Multimedia Console allows remote attackers to inject malicious code. QANP have already fixed this vulnerability in Multimedia Console 1.1.5 and later.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.2%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2020-2493
-
cpe:2.3:a:qnap:multimedia_console:-
-
cpe:2.3:a:qnap:multimedia_console:1.0.0
-
cpe:2.3:a:qnap:multimedia_console:1.0.1
-
cpe:2.3:a:qnap:multimedia_console:1.0.12
-
cpe:2.3:a:qnap:multimedia_console:1.0.13
-
cpe:2.3:a:qnap:multimedia_console:1.0.14
-
cpe:2.3:a:qnap:multimedia_console:1.0.15
-
cpe:2.3:a:qnap:multimedia_console:1.0.2
-
cpe:2.3:a:qnap:multimedia_console:1.0.3
-
cpe:2.3:a:qnap:multimedia_console:1.0.4
-
cpe:2.3:a:qnap:multimedia_console:1.0.5
-
cpe:2.3:a:qnap:multimedia_console:1.0.7
-
cpe:2.3:a:qnap:multimedia_console:1.0.9
-
cpe:2.3:a:qnap:multimedia_console:1.1.1
-
cpe:2.3:a:qnap:multimedia_console:1.1.2
-
cpe:2.3:a:qnap:multimedia_console:1.1.3
-
cpe:2.3:a:qnap:multimedia_console:1.1.4