CVE-2019-7195: QNAP Photo Station Path Traversal Vulnerability. QNAP
QNAP Photo Station Path Traversal Vulnerability. QNAP devices running Photo Station contain an external control of file name or path vulnerability allowing remote attackers to access or modify system files.
- CISA KEV-listed (remediation due 2022-06-22)
- used in ransomware campaigns
- EPSS 94.1% (99.9% percentile)