CVE-2019-7192: QNAP Photo Station Improper Access Control Vulnerability.
QNAP Photo Station Improper Access Control Vulnerability. QNAP NAS devices running Photo Station contain an improper access control vulnerability allowing remote attackers to gain unauthorized access to the system.
- CISA KEV-listed (remediation due 2022-06-22)
- used in ransomware campaigns
- EPSS 94.3% (99.9% percentile)