Skip to main content

Media Streaming Add On

6 CVEs product

Monthly

CVE-2025-59383 LOW PATCH Monitor

A stack-based buffer overflow vulnerability exists in QNAP Media Streaming Add-On that allows remote attackers to corrupt memory or crash the affected process. All versions prior to 500.1.1 are vulnerable, and the attack requires no authentication or user interaction. While no CVSS score or EPSS data is currently available, the presence of a confirmed patch and the critical nature of buffer overflow vulnerabilities in media processing software suggests this warrants immediate patching.

Buffer Overflow Stack Overflow Media Streaming Add On
NVD VulDB
CVSS 4.0
2.7
EPSS
0.2%
CVE-2024-56808 HIGH This Week

A command injection vulnerability has been reported to affect Media Streaming add-on. If an attacker gains local network access who have also gained a user account, they can then exploit the vulnerability to execute arbitrary commands. [CVSS 7.8 HIGH]

Command Injection Media Streaming Add On
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2024-56807 MEDIUM This Month

An out-of-bounds read vulnerability has been reported to affect Media Streaming add-on. If an attacker gains local network access, they can then exploit the vulnerability to obtain secret data. [CVSS 5.5 MEDIUM]

Buffer Overflow Information Disclosure Media Streaming Add On
NVD
CVSS 3.1
5.5
EPSS
0.0%
CVE-2024-50395 MEDIUM This Month

An authorization bypass through user-controlled key vulnerability has been reported to affect Media Streaming add-on. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Media Streaming Add On
NVD
CVSS 4.0
6.9
EPSS
1.3%
CVE-2023-23369 CRITICAL Act Now

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Command Injection Qts Multimedia Console Media Streaming Add On
NVD
CVSS 3.1
9.8
EPSS
14.4%
CVE-2021-34362 HIGH This Week

A command injection vulnerability has been reported to affect QNAP device running Media Streaming add-on. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Qnap Command Injection Media Streaming Add On
NVD
CVSS 3.1
7.2
EPSS
1.3%
EPSS 0% CVSS 2.7
LOW PATCH Monitor

A stack-based buffer overflow vulnerability exists in QNAP Media Streaming Add-On that allows remote attackers to corrupt memory or crash the affected process. All versions prior to 500.1.1 are vulnerable, and the attack requires no authentication or user interaction. While no CVSS score or EPSS data is currently available, the presence of a confirmed patch and the critical nature of buffer overflow vulnerabilities in media processing software suggests this warrants immediate patching.

Buffer Overflow Stack Overflow Media Streaming Add On
NVD VulDB
EPSS 0% CVSS 7.8
HIGH This Week

A command injection vulnerability has been reported to affect Media Streaming add-on. If an attacker gains local network access who have also gained a user account, they can then exploit the vulnerability to execute arbitrary commands. [CVSS 7.8 HIGH]

Command Injection Media Streaming Add On
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

An out-of-bounds read vulnerability has been reported to affect Media Streaming add-on. If an attacker gains local network access, they can then exploit the vulnerability to obtain secret data. [CVSS 5.5 MEDIUM]

Buffer Overflow Information Disclosure Media Streaming Add On
NVD
EPSS 1% CVSS 6.9
MEDIUM This Month

An authorization bypass through user-controlled key vulnerability has been reported to affect Media Streaming add-on. Rated medium severity (CVSS 6.9), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Media Streaming Add On
NVD
EPSS 14% CVSS 9.8
CRITICAL Act Now

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Command Injection Qts +2
NVD
EPSS 1% CVSS 7.2
HIGH This Week

A command injection vulnerability has been reported to affect QNAP device running Media Streaming add-on. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Qnap Command Injection Media Streaming Add On
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy