cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-23369,https://securityvulnerability.io/vulnerability/CVE-2023-23369,"QTS, Multimedia Console, and Media Streaming add-on","An OS command injection vulnerability exists in multiple QNAP operating system versions, potentially allowing attackers to execute arbitrary commands over the network. This vulnerability impacts various products and has been addressed in specific updates. Users are encouraged to update their systems to the latest versions to mitigate potential risks.",QNAP,"Multimedia Console,QTS,Media Streaming add-on",9.8,CRITICAL,0.00107999995816499,false,false,false,false,,false,false,2023-11-03T17:15:00.000Z,0
CVE-2023-23364,https://securityvulnerability.io/vulnerability/CVE-2023-23364,Multimedia Console,"A buffer copy vulnerability has been discovered in QNAP operating systems, which could potentially allow remote attackers to execute arbitrary code through unspecified methods. Users are advised to update to the patched versions of Multimedia Console to mitigate this risk.",QNAP,Multimedia Console,8.1,HIGH,0.0036700000055134296,false,false,false,false,,false,false,2023-09-22T04:15:00.000Z,0
CVE-2021-38684,https://securityvulnerability.io/vulnerability/CVE-2021-38684,Buffer Overflow Vulnerability in Multimedia Console,"A stack buffer overflow vulnerability has been reported to affect QNAP NAS running Multimedia Console. If exploited, this vulnerability allows attackers to execute arbitrary code. We have already fixed this vulnerability in the following versions of Multimedia Console: Multimedia Console 1.4.3 ( 2021/10/05 ) and later Multimedia Console 1.5.3 ( 2021/10/05 ) and later",QNAP,Multimedia Console,8.1,HIGH,0.003449999960139394,false,false,false,false,,false,false,2021-11-13T01:15:00.000Z,0
CVE-2020-36195,https://securityvulnerability.io/vulnerability/CVE-2020-36195,SQL Injection Vulnerability in Multimedia Console and the Media Streaming Add-On,"An SQL injection vulnerability has been reported to affect QNAP NAS running Multimedia Console or the Media Streaming add-on. If exploited, the vulnerability allows remote attackers to obtain application information. QNAP has already fixed this vulnerability in the following versions of Multimedia Console and the Media Streaming add-on. QTS 4.3.3: Media Streaming add-on 430.1.8.10 and later QTS 4.3.6: Media Streaming add-on 430.1.8.8 and later QTS 4.4.x and later: Multimedia Console 1.3.4 and later We have also fixed this vulnerability in the following versions of QTS 4.3.3 and QTS 4.3.6, respectively: QTS 4.3.3.1624 Build 20210416 or later QTS 4.3.6.1620 Build 20210322 or later",QNAP,"Qts,Media Streaming Add-on,Multimedia Console",9.8,CRITICAL,0.0011899999808520079,false,false,false,false,,false,false,2021-04-17T04:15:00.000Z,0
CVE-2020-2493,https://securityvulnerability.io/vulnerability/CVE-2020-2493,Cross-site Scripting Vulnerability in Multimedia Console,This cross-site scripting vulnerability in Multimedia Console allows remote attackers to inject malicious code. QANP have already fixed this vulnerability in Multimedia Console 1.1.5 and later.,QNAP,Multimedia Console,6.1,MEDIUM,0.0011500000255182385,false,false,false,false,,false,false,2020-12-07T00:00:00.000Z,0