Vladimir Meier

**Name of the Vulnerable Software and Affected Versions** Video Station versions prior to 5.7.2 **Description** An OS command injection issue has been reported, potentially allowing users to execute commands via a network. The vulnerability is related to the failure to neutralize special elements used in an OS command. If exploited, it could enable a remote attacker to execute arbitrary commands. **Recommendations** For versions prior to 5.7.2, update to version 5.7.2 or later to resolve the issue. As a temporary workaround, consider restricting network access to Video Station until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Video Station versions prior to 5.7.2 **Description** A SQL injection issue affects Video Station, related to a lack of protection against SQL query structure attacks. This could allow a remote attacker to execute arbitrary code by injecting malicious code via a network. **Recommendations** For versions prior to 5.7.2, update to version 5.7.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the SQL query functionality until a patch is applied.