PT-2019-18460 · Synology · Music Station
Published
2019-12-05
·
Updated
2023-01-30
·
CVE-2019-7185
CVSS v3.1
4.8
Medium
| Vector | AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Music Station versions prior to the latest version
Description
This issue allows remote attackers to inject and execute scripts on the administrator’s management console through a cross-site scripting (XSS) vulnerability in Music Station.
Recommendations
Update Music Station to the latest version to resolve the issue.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Music Station