Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
video station vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2021-44056
An improper authentication vulnerability has been reported to affect QNAP device running Video Station. If exploited, this vulnerability allows malicious users to compromise the security of the system. We have already fixed this vulnerability in the following versions of Video St...
Qnap Video Station
578
VMScore
CVE-2021-33181
Server-Side Request Forgery (SSRF) vulnerability in webapi component in Synology Video Station prior to 2.4.10-1632 allows remote authenticated users to send arbitrary request to intranet resources via unspecified vectors.
Synology Video Station
312
VMScore
CVE-2017-9556
Cross-site scripting (XSS) vulnerability in Video Metadata Editor in Synology Video Station prior to 2.3.0-1435 allows remote authenticated malicious users to inject arbitrary web script or HTML via the title parameter.
Synology Video Station
614
VMScore
CVE-2013-6123
Multiple array index errors in drivers/media/video/msm/server/msm_cam_server.c in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow malicious users to gain privileges by lev...
Codeaurora Android-msm 2.6.29
Qualcomm Quic Mobile Station Modem Kernel 3.10
755
VMScore
CVE-2001-1108
Directory traversal vulnerability in SnapStream PVS 1.2a allows remote malicious users to read arbitrary files via a .. (dot dot) attack in the requested URL.
Snapstream Pvs 1.2a
1 EDB exploit
578
VMScore
CVE-2021-28812
A command injection vulnerability has been reported to affect certain versions of Video Station. If exploited, this vulnerability allows remote malicious users to execute arbitrary commands. This issue affects: QNAP Systems Inc. Video Station versions before 5.5.4 on QTS 4.5.2; v...
Qnap Video Station
312
VMScore
CVE-2019-7184
This cross-site scripting (XSS) vulnerability in Video Station allows remote malicious users to inject and execute scripts on the administrator’s management console. To fix this vulnerability, QNAP recommend updating Video Station to their latest versions.
Qnap Video Station
NA
CVE-2022-40903
Aiphone GT-DMB-N 3-in-1 Video Entrance Station with NFC Reader 1.0.3 does not mitigate against repeated failed access attempts, which allows an malicious user to gain administrative privileges.
Aiphone Gt-dmb-n Firmware
Aiphone Gt-dmb Firmware
Aiphone Gt-dmb-lvn Firmware
Aiphone Gt-db-vn Firmware
668
VMScore
CVE-2017-13071
QNAP has already patched this vulnerability. This security concern allows a remote malicious user to run arbitrary commands on the QNAP Video Station 5.1.3 (for QTS 4.3.3), 5.2.0 (for QTS 4.3.4), and previous versions.
Qnap Video Station 5.1.3
Qnap Video Station 5.2.0
445
VMScore
CVE-2014-3569
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected ...
Openssl Openssl 1.0.1j
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »