CVE-2018-19952

CVE-2018-19952

Vendor Qnap Systems Inc.

Product Music Station

Weakness CWE-20 · Input validation

Published November 2, 2020

Last update September 17, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

If exploited, this SQL injection vulnerability could allow remote attackers to obtain application information. This issue affects: QNAP Systems Inc. Music Station versions prior to 5.1.13; versions prior to 5.2.9; versions prior to 5.3.11.

Key dates

02Disclosure timeline

November 2, 2020 CVE published

September 17, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2018-19952 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/20.html

Related vulnerabilities

Identifiers

CVE CVE-2018-19952

CWE CWE-20

Affected versions

Vendor Qnap Systems Inc.

Product Music Station

Affected ≥ unspecified and < 5.1.13

Vendor Qnap Systems Inc.

Product Music Station

Affected ≥ unspecified and < 5.2.9

Vendor Qnap Systems Inc.

Product Music Station

Affected ≥ unspecified and < 5.3.11

01Description

02Disclosure timeline

03References

04Related CVE