Qnap

Media Streaming Add-on

13 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.7

CVE-2025-59383

  • EPSS 0.18%
  • Veröffentlicht 20.03.2026 16:22:07
  • Zuletzt bearbeitet 20.03.2026 17:16:42

A buffer overflow vulnerability has been reported to affect Media Streaming Add-On. The remote attackers can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: Media ...

5.5

CVE-2024-56807

  • EPSS 0.02%
  • Veröffentlicht 11.02.2026 12:20:14
  • Zuletzt bearbeitet 12.02.2026 19:29:32

An out-of-bounds read vulnerability has been reported to affect Media Streaming add-on. If an attacker gains local network access, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the followin...

7.8

CVE-2024-56808

  • EPSS 0.05%
  • Veröffentlicht 11.02.2026 12:20:08
  • Zuletzt bearbeitet 12.02.2026 19:24:00

A command injection vulnerability has been reported to affect Media Streaming add-on. If an attacker gains local network access who have also gained a user account, they can then exploit the vulnerability to execute arbitrary commands. We have alrea...

8.8

CVE-2024-50395

  • EPSS 6.42%
  • Veröffentlicht 22.11.2024 16:15:32
  • Zuletzt bearbeitet 08.12.2025 18:30:38

An authorization bypass through user-controlled key vulnerability has been reported to affect Media Streaming add-on. If exploited, the vulnerability could allow local network attackers to gain privilege. We have already fixed the vulnerability in t...

6.6

CVE-2023-47220

  • EPSS 0.14%
  • Veröffentlicht 03.05.2024 03:16:01
  • Zuletzt bearbeitet 08.12.2025 19:30:38

An OS command injection vulnerability has been reported to affect Media Streaming add-on. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the foll...

9.8

CVE-2023-47222

  • EPSS 0.36%
  • Veröffentlicht 26.04.2024 15:15:46
  • Zuletzt bearbeitet 05.12.2025 21:26:21

An exposure of sensitive information vulnerability has been reported to affect Media Streaming add-on. If exploited, the vulnerability could allow users to compromise the security of the system via a network. We have already fixed the vulnerability ...

9.8

CVE-2023-23369

  • EPSS 11.81%
  • Veröffentlicht 03.11.2023 17:15:08
  • Zuletzt bearbeitet 21.11.2024 07:46:02

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute commands via a network. We have already fixed the vulnerability in the following v...

7.2

CVE-2021-34362

  • EPSS 0.87%
  • Veröffentlicht 22.10.2021 05:15:41
  • Zuletzt bearbeitet 21.11.2024 06:10:14

A command injection vulnerability has been reported to affect QNAP device running Media Streaming add-on. If exploited, this vulnerability allow remote attackers to run arbitrary commands. We have already fixed this vulnerability in the following ver...

9.8

CVE-2020-36195

  • EPSS 0.46%
  • Veröffentlicht 17.04.2021 04:15:11
  • Zuletzt bearbeitet 21.11.2024 05:28:59

An SQL injection vulnerability has been reported to affect QNAP NAS running Multimedia Console or the Media Streaming add-on. If exploited, the vulnerability allows remote attackers to obtain application information. QNAP has already fixed this vulne...

6.1

CVE-2017-7634

  • EPSS 0.25%
  • Veröffentlicht 08.03.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 03:32:20

Cross-site scripting (XSS) vulnerability in QNAP NAS application Media Streaming add-on version 421.1.0.2, 430.1.2.0, and earlier allows remote attackers to inject arbitrary web script or HTML. The injected code will only be triggered by a crafted li...