Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
video station vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-41288
An OS command injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following version: Video Station 5.7.2 ( 2023/11/23 ) and later
Qnap Video Station
NA
CVE-2023-41287
A SQL injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow users to inject malicious code via a network. We have already fixed the vulnerability in the following version: Video Station 5.7.2 ( 2023/11/23 ) and later
Qnap Video Station
3.5
CVSSv2
CVE-2017-9556
Cross-site scripting (XSS) vulnerability in Video Metadata Editor in Synology Video Station prior to 2.3.0-1435 allows remote authenticated malicious users to inject arbitrary web script or HTML via the title parameter.
Synology Video Station
6.9
CVSSv2
CVE-2013-6123
Multiple array index errors in drivers/media/video/msm/server/msm_cam_server.c in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow malicious users to gain privileges by lev...
Codeaurora Android-msm 2.6.29
Qualcomm Quic Mobile Station Modem Kernel 3.10
7.5
CVSSv2
CVE-2001-1108
Directory traversal vulnerability in SnapStream PVS 1.2a allows remote malicious users to read arbitrary files via a .. (dot dot) attack in the requested URL.
Snapstream Pvs 1.2a
1 EDB exploit
6.5
CVSSv2
CVE-2021-28812
A command injection vulnerability has been reported to affect certain versions of Video Station. If exploited, this vulnerability allows remote malicious users to execute arbitrary commands. This issue affects: QNAP Systems Inc. Video Station versions before 5.5.4 on QTS 4.5.2; v...
Qnap Video Station
3.5
CVSSv2
CVE-2019-7184
This cross-site scripting (XSS) vulnerability in Video Station allows remote malicious users to inject and execute scripts on the administrator’s management console. To fix this vulnerability, QNAP recommend updating Video Station to their latest versions.
Qnap Video Station
NA
CVE-2022-40903
Aiphone GT-DMB-N 3-in-1 Video Entrance Station with NFC Reader 1.0.3 does not mitigate against repeated failed access attempts, which allows an malicious user to gain administrative privileges.
Aiphone Gt-dmb-n Firmware
Aiphone Gt-dmb Firmware
Aiphone Gt-dmb-lvn Firmware
Aiphone Gt-db-vn Firmware
7.5
CVSSv2
CVE-2017-13071
QNAP has already patched this vulnerability. This security concern allows a remote malicious user to run arbitrary commands on the QNAP Video Station 5.1.3 (for QTS 4.3.3), 5.2.0 (for QTS 4.3.4), and previous versions.
Qnap Video Station 5.1.3
Qnap Video Station 5.2.0
5
CVSSv2
CVE-2014-3569
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected ...
Openssl Openssl 1.0.1j
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »