What is CVE-2015-6022?

CVE-2015-6022 is a high-severity vulnerability in Qnap Signage_station. CVSS score: 8.8/10. Published 2016-02-27.

How severe is CVE-2015-6022?

High severity. CVSS v3 base score is 8.8 out of 10.

Vulnerability in Qnap Signage_station

CVE-2015-6022

Unrestricted file upload vulnerability in QNAP Signage Station before 2.0.1 allows remote authenticated users to execute arbitrary code by uploading an executable file, and then accessing this file via an unspecified URL.

EPSS: 0.008 (74.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.8 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Qnap Signage_station
N/a — versions n/a

References

VU#444472 (x_refsource_CERT-VN, US Government Resource, Third Party Advisory, third-party-advisory)

Frequently asked questions

What is CVE-2015-6022?: CVE-2015-6022 is a high-severity vulnerability in Qnap Signage_station. CVSS score: 8.8/10. Published 2016-02-27.
How severe is CVE-2015-6022?: High severity. CVSS v3 base score is 8.8 out of 10.