漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Media Streaming add-on
Vulnerability Description
A command injection vulnerability has been reported to affect Media Streaming add-on. If an attacker gains local network access who have also gained a user account, they can then exploit the vulnerability to execute arbitrary commands. We have already fixed the vulnerability in the following version: Media Streaming add-on 500.1.1.6 ( 2024/08/02 ) and later
CVSS Information
N/A
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
QNAP Systems Media Streaming add-on 操作系统命令注入漏洞
Vulnerability Description
QNAP Systems Media Streaming add-on是中国台湾威联通科技(QNAP Systems)公司的一个多媒体增强插件。 QNAP Systems Media Streaming add-on存在操作系统命令注入漏洞,该漏洞源于命令注入,可能导致攻击者在获得本地网络访问权限及用户账户后执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A