Vulnerabilities > Qnap > Music Station > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-11-02 CVE-2018-19950 Command Injection vulnerability in Qnap Music Station
If exploited, this command injection vulnerability could allow remote attackers to execute arbitrary commands.
network
low complexity
qnap CWE-77
critical
9.8
2019-12-04 CVE-2018-0729 Command Injection vulnerability in Qnap Music Station
This command injection vulnerability in Music Station allows attackers to execute commands on the affected device.
network
low complexity
qnap CWE-77
critical
9.8
2018-09-14 CVE-2018-0718 Command Injection vulnerability in Qnap Music Station
Command injection vulnerability in Music Station 5.1.2 and earlier versions in QNAP QTS 4.3.3 and 4.3.4 could allow remote attackers to run arbitrary commands in the compromised application.
network
low complexity
qnap CWE-77
critical
9.8
2017-10-06 CVE-2017-13069 Command Injection vulnerability in Qnap Music Station
QNAP discovered a number of command injection vulnerabilities found in Music Station versions 4.8.6 (for QTS 4.2.x), 5.0.7 (for QTS 4.3.x), and earlier.
network
low complexity
qnap CWE-77
critical
9.8