Search

Security ID : NAS-201909-26

Security Advisory for Vulnerability in Music Station

  • Release date : September 27, 2019

  • CVE identifier : CVE-2019-7188

  • Affected products: All QNAP NAS running Music Station

Severity

Moderate

Status

Resolved

Summary

A reported vulnerability may affect Music Station. If exploited, the vulnerability may allow an attacker to inject arbitrary code into the system.

We have already fixed this issue in the following QTS versions:

  • QTS 4.3.3: Music Station 5.1.10 and later
  • QTS 4.3.4: Music Station 5.1.10 and later
  • QTS 4.3.6: Music Station 5.2.7 and later
  • QTS 4.4.1: Music Station 5.3.4 and later

Recommendation

To fix the vulnerability, we recommend updating the Music Station to the latest version.

Updating Music Station

  1. Log on to QTS as an administrator.
  2. Open the App Center, and then click .
    A search box appears.
  3. Type “Music Station”, and then press ENTER.
    The Music Station application appears in the search results list.
  4. Click Update.
    A confirmation message appears.
    Note: The Update button is not available if your Music Station is already up to date.
  5. Click OK.
    The application is updated.

Acknowledgements: CyCarrier CSIRT

Revision History: V1.0 (September 27, 2019) - Published

仕様を選択

      もっと見る 閉じる

      当ページを他の国/地域で見る:

      気軽にお問い合わせ! show inquiry button
      open menu
      back to top