CISA/NIST NVD Alert - CVE-2019-7194

Photo Station - QNAP Photo Station Path Traversal Vulnerability

CISA/NIST Known Exploited Vulnerability Alert

CVE Identification Number

CVE-2019-7194

Vendor Name

QNAP

Product

Photo Station

Vulnerability Name

QNAP Photo Station Path Traversal Vulnerability

Description of Vulnerability

QNAP devices running Photo Station contains an external control of file name or path vulnerability allowing remote attackers to access or modify system files.

Date Added to CISA Known Exploited Vulnerability Database

2022-06-08

Remediation

Apply updates per vendor instructions.

Link to NIST NVD CVE Listing

National Vulnerability Database Source