VDB
CVE-2023-45038
CVE-2023-45038
PUBLISHED
CVSS 4.300000190734863 MEDIUM
An improper authentication vulnerability has been reported to affect Music Station. If exploited, the vulnerability could allow users to compromise the security of the system via a network. We have already fixed the vulnerability in the following version: Music Station 5.4.0 and later
EPSS 8.54% · 92.3th percentile
Risk Scores
CVSS v3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
EPSS Score
8.54%
92.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| QNAP Systems Inc. | Music Station | 5.4.x |
| qnap | music_station | 5.0.0 |
Timeline
- Mar 8, 2022 CrowdSec Sighting
- Sep 24, 2022 CrowdSec Sighting
- Nov 8, 2022 CrowdSec Sighting
- Nov 23, 2023 CrowdSec Sighting
- Sep 6, 2024 CVE Published
- Sep 7, 2024 EPSS Score
- Sep 26, 2024 EPSS Score
- Sep 28, 2024 CVE Updated
- Oct 16, 2024 EPSS Score
- Nov 4, 2024 EPSS Score
- Nov 24, 2024 EPSS Score
- Jan 2, 2025 EPSS Score
References
- https://www.qnap.com/go/security-advisory/qsa-24-24 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-26 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-34 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-30 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-21 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-27 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-29 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-28 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-32 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-25 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-33 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-22 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-35 advisory
- https://www.qnap.com/en/security-advisory/qsa-24-25 url
- https://nvd.nist.gov/vuln/detail/CVE-2023-45038 advisory