{"cve":{"cve_id":"CVE-2021-44056","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00825,"epss_percentile":0.52622,"epss_as_of":"2026-06-23","description":"An improper authentication vulnerability has been reported to affect QNAP device running Video Station. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of Video Station: Video Station 5.5.9 and later Video Station 5.3.13 and later Video Station 5.1.8 and later","published_at":"2022-05-05T16:50:27.692000Z","last_modified_at":null,"cvss_v3_score":7.1,"cvss_v3_vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N","cvss_v3_severity":"HIGH","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-287"],"nvd_references":["https://www.qnap.com/en/security-advisory/qsa-22-14"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:16:23.114133Z"},"effective_severity":"HIGH","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"N","value_label":"Network"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"L","value_label":"Low"},{"metric":"A","name":"Availability","value":"N","value_label":"None"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"qnap-systems-inc.","vendor_name":"QNAP Systems Inc.","product_slug":"video-station","product_name":"Video Station","version_start":"unspecified","version_start_inclusive":true,"version_end":"5.5.9","version_end_inclusive":false,"cpe23_uri":"cve5:qnap-systems-inc.:video-station:unspecified:5.5.9"},{"vendor_slug":"qnap-systems-inc.","vendor_name":"QNAP Systems Inc.","product_slug":"video-station","product_name":"Video Station","version_start":"unspecified","version_start_inclusive":true,"version_end":"5.3.13","version_end_inclusive":false,"cpe23_uri":"cve5:qnap-systems-inc.:video-station:unspecified:5.3.13"},{"vendor_slug":"qnap-systems-inc.","vendor_name":"QNAP Systems Inc.","product_slug":"video-station","product_name":"Video Station","version_start":"unspecified","version_start_inclusive":true,"version_end":"5.1.8","version_end_inclusive":false,"cpe23_uri":"cve5:qnap-systems-inc.:video-station:unspecified:5.1.8"}],"exploit_refs":[],"news":[],"references":[{"url":"https://www.qnap.com/en/security-advisory/qsa-22-14","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2022-05-05T16:50:27.692000Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:19:49.878100Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:19:49.878100Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:19:49.878100Z","label":"CVSS score revised","source":"cvelistv5"}]}