Qnap: >> Video Station >> 5.2.0 Security Vulnerabilities
This cross-site scripting (XSS) vulnerability in Video Station allows remote attackers to inject and execute scripts on the administrator’s management console. To fix this vulnerability, QNAP recommend updating Video Station to their latest versions.
CVSS Score
4.8
EPSS Score
0.002
Published
2019-12-05
QNAP has already patched this vulnerability. This security concern allows a remote attacker to run arbitrary commands on the QNAP Video Station 5.1.3 (for QTS 4.3.3), 5.2.0 (for QTS 4.3.4), and earlier.
CVSS Score
9.8
EPSS Score
0.009
Published
2017-11-22
Page 2