Security ID : QSA-22-14
Multiple Vulnerabilities in Video Station
Release date : May 6, 2022
CVE identifier : CVE-2021-44055 | CVE-2021-44056
Affected products: Certain QNAP NAS running Video Station
Severity
Moderate
Status
Resolved
Summary
Multiple vulnerabilities have been reported to affect QNAP NAS running certain versions of Video Station. If exploited, this vulnerability allows remote attackers to access sensitive data, perform unauthorized actions, and compromise the security of the system.
We have already fixed the vulnerabilities in the following versions:
- Video Station 5.5.9 and later
- Video Station 5.3.13 and later
- Video Station 5.1.8 and later
Recommendation
To fix the vulnerabilities, we recommend updating Video Station to the latest version.
Updating Video Station
- Log on to QTS or QuTS hero as administrator.
- Open the App Center and then click
.
A search box appears. - Enter “Video Station”.
Video Station appears in the search results. - Click Update.
A confirmation message appears.
Note: The Update button is not available if your Video Station is already up to date. - Click OK.
The application is updated.
Acknowledgements: Thomas Fady
Revision History: V1.0 (May 6, 2022) - Published
