CVE-2018-0718

Command injection vulnerability in Music Station 5.1.2 and earlier versions in QNAP QTS 4.3.3 and 4.3.4 could allow remote attackers to run arbitrary commands in the compromised application.
References
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:qnap:music_station:*:*:*:*:*:*:*:*
OR cpe:2.3:o:qnap:qts:4.3.3:*:*:*:*:*:*:*
cpe:2.3:o:qnap:qts:4.3.4:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-09-14 12:29

Updated : 2024-02-04 20:03


NVD link : CVE-2018-0718

Mitre link : CVE-2018-0718

CVE.ORG link : CVE-2018-0718


JSON object : View

Products Affected

qnap

  • qts
  • music_station
CWE
CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')