← volver
CVE-2021-44056

Improper authentication in Video Station

CVSS 7.1 HIGHEPSS 0.8%CWE-287
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.1EPSS 0.8%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
05 may 2022Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
An improper authentication vulnerability has been reported to affect QNAP device running Video Station. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of Video Station: Video Station 5.5.9 and later Video Station 5.3.13 and later Video Station 5.1.8 and later
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N
Productos afectados
QNAP Systems Inc. · Video Station

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.qnap.com/en/security-advisory/qsa-22-14