CNNVD-202510-455 Information

Oct 03, 2025 cve

CNNVD ID

CNNVD-202510-455

CVE-2024-56804

  • CNNVD Published: 2025-10-03

Description (Chinese)

QNAP Video Station是中国台湾威联通科技(QNAP)公司的一个多媒体应用。 QNAP Video Station 5.8.4之前版本存在SQL注入漏洞,该漏洞源于未充分验证输入,可能导致SQL注入攻击。

Description (English)

QNAP Video State is a multimedia application of QNAP. The previous version of QNAP Vidio State 5.8.4 had an injection loophole in SQL, which originated from insufficient validation of the input and could lead to an attack on SQL.

Hazard Level

Medium

Vulnerability Type

SQL注入

Affected Vendor

威联通科技

Published

2025-10-03

Last Modified

2026-02-24

References

https://www.qnap.com/en/security-advisory/qsa-25-32

Patch

https://www.qnap.com/en/security-advisory/qsa-25-32

Share on: