VDB
CVE-2023-45038
CVE-2023-45038
PUBLISHED
CVSS 4.300000190734863 MEDIUM
An improper authentication vulnerability has been reported to affect Music Station. If exploited, the vulnerability could allow users to compromise the security of the system via a network. We have already fixed the vulnerability in the following version: Music Station 5.4.0 and later
EPSS 6.91% · 91.6th percentile
Risk Scores
CVSS 3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
EPSS Score
6.91%
91.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| QNAP Systems Inc. | Music Station | 5.4.x |
| qnap | music_station | 5.0.0 |
Timeline
- Mar 8, 2022 CrowdSec Sighting
- Sep 24, 2022 CrowdSec Sighting
- Nov 8, 2022 CrowdSec Sighting
- Dec 11, 2022 CrowdSec Sighting
- Dec 11, 2022 CrowdSec Sighting
- Dec 11, 2022 CrowdSec Sighting
- Dec 11, 2022 CrowdSec Sighting
- Dec 18, 2022 CrowdSec Sighting
- Dec 23, 2022 CrowdSec Sighting
- Apr 17, 2023 CrowdSec Sighting
- Nov 23, 2023 CrowdSec Sighting
- Aug 1, 2024 CrowdSec Sighting
References
- https://www.qnap.com/go/security-advisory/qsa-24-24 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-26 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-34 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-30 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-21 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-27 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-29 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-28 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-32 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-25 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-33 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-22 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-35 advisory
- https://www.qnap.com/en/security-advisory/qsa-24-25 url
- https://nvd.nist.gov/vuln/detail/CVE-2023-45038 advisory