This cross-site scripting vulnerability in Music Station allows remote attackers to inject malicious code. QANP have already fixed this vulnerability in the following versions of Music Station. QuTS hero h4.5.1: Music Station 5.3.13 and later QTS 4.5.1: Music Station 5.3.12 and later QTS 4.4.3: Music Station 5.3.12 and later
References
Link | Resource |
---|---|
https://www.qnap.com/en/security-advisory/qsa-20-13 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: qnap
Published: 2020-12-07T00:00:00
Updated: 2020-12-10T03:36:27
Reserved: 2019-12-09T00:00:00
Link: CVE-2020-2494
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-12-10T04:15:11.783
Modified: 2023-11-14T19:26:49.173
Link: CVE-2020-2494
JSON object: View
Redhat Information
No data.