Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
video station vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-6912
Synology Video Station prior to 1.5-0763 allows remote malicious users to execute arbitrary shell commands via shell metacharacters in the subtitle_codepage parameter to subtitle.cgi.
Synology Video Station
1 EDB exploit
8.8
CVSSv3
CVE-2023-41287
A SQL injection vulnerability has been reported to affect Video Station. If exploited, the vulnerability could allow users to inject malicious code via a network. We have already fixed the vulnerability in the following version: Video Station 5.7.2 ( 2023/11/23 ) and later
Qnap Video Station
NA
CVE-2015-6911
SQL injection vulnerability in Synology Video Station prior to 1.5-0763 allows remote malicious users to execute arbitrary SQL commands via the id parameter to watchstatus.cgi.
Synology Video Station
1 EDB exploit
NA
CVE-2013-6123
Multiple array index errors in drivers/media/video/msm/server/msm_cam_server.c in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allow malicious users to gain privileges by lev...
Codeaurora Android-msm 2.6.29
Qualcomm Quic Mobile Station Modem Kernel 3.10
NA
CVE-2001-1108
Directory traversal vulnerability in SnapStream PVS 1.2a allows remote malicious users to read arbitrary files via a .. (dot dot) attack in the requested URL.
Snapstream Pvs 1.2a
1 EDB exploit
8.8
CVSSv3
CVE-2021-28812
A command injection vulnerability has been reported to affect certain versions of Video Station. If exploited, this vulnerability allows remote malicious users to execute arbitrary commands. This issue affects: QNAP Systems Inc. Video Station versions before 5.5.4 on QTS 4.5.2; v...
Qnap Video Station
4.8
CVSSv3
CVE-2019-7184
This cross-site scripting (XSS) vulnerability in Video Station allows remote malicious users to inject and execute scripts on the administrator’s management console. To fix this vulnerability, QNAP recommend updating Video Station to their latest versions.
Qnap Video Station
6.5
CVSSv3
CVE-2022-40903
Aiphone GT-DMB-N 3-in-1 Video Entrance Station with NFC Reader 1.0.3 does not mitigate against repeated failed access attempts, which allows an malicious user to gain administrative privileges.
Aiphone Gt-dmb-n Firmware
Aiphone Gt-dmb Firmware
Aiphone Gt-dmb-lvn Firmware
Aiphone Gt-db-vn Firmware
9.8
CVSSv3
CVE-2017-13071
QNAP has already patched this vulnerability. This security concern allows a remote malicious user to run arbitrary commands on the QNAP Video Station 5.1.3 (for QTS 4.3.3), 5.2.0 (for QTS 4.3.4), and previous versions.
Qnap Video Station 5.1.3
Qnap Video Station 5.2.0
NA
CVE-2014-3569
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected ...
Openssl Openssl 1.0.1j
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »