安全ID : QSA-25-32
Vulnerability in Video Station
发布日期 : October 4, 2025
通用漏洞披露 : CVE-2024-56804
受影响产品: Video Station 5.8.x
严重程度
Important
状态
已解决
Summary
An SQL injection vulnerability has been reported to affect Video Station. If a remote attacker gains access to a user account, they can then exploit the vulnerability to execute unauthorized code or commands.
We have already fixed the vulnerability in the following version:
| Affected Product | Fixed Version |
| Video Station 5.8.x | Video Station 5.8.4 and later |
Recommendation
To fix the vulnerability, we recommend updating Video Station to the latest version.
Updating Video Station
- Log on to QTS or QuTS hero as an administrator.
- Open App Center and then click
.
A search box appears. - Type "Video Station" and then press ENTER.
Video Station appears in the search results. - Click Update.
A confirmation message appears.
Note: The Update button is not available if your Video Station is already up to date. - Click OK.
The system updates the application.
附件
致谢: Searat and izut
修订历史:
V1.0 (October 4, 2025) - Published
