CVE-2018-19950
If exploited, this command injection vulnerability could allow remote attackers to execute arbitrary commands.
This issue affects:
QNAP Systems Inc. Music Station
versions prior to 5.1.13;
versions prior to 5.2.9;
versions prior to 5.3.11.
Source: CVE-2018-19950