Qnap Photo_station

26 CVEs affecting Qnap Photo_station. Latest disclosed: 2025-11-11. Critical: 5, High: 6.

Top CVEs affecting Qnap Photo_station
CVESeverityScorePublishedSummary
CVE-2022-27593Critical10.02022-09-08An externally controlled reference to a resource vulnerability has been reported to affect QNAP NAS running Photo Station. If exploited, This could allow an at…
CVE-2017-20210Critical9.82025-11-11Photo Station 5.4.1 & 5.2.7 include the security fix for the vulnerability related to the XMR mining programs identified by internal research.
CVE-2019-7195Critical9.82019-12-05This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fix the vulnerability, QNAP recommend upd…
CVE-2019-7194Critical9.82019-12-05This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fix the vulnerability, QNAP recommend upd…
CVE-2019-7192Critical9.82019-12-05This improper access control vulnerability allows remote attackers to gain unauthorized access to the system. To fix these vulnerabilities, QNAP recommend upda…
CVE-2021-34356High7.62021-10-01A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Photo Station. If exploited, this vulnerability allows remote attack…
CVE-2021-34355High7.62021-10-01A cross-site scripting (XSS) vulnerability has been reported to affect QNAP NAS running Photo Station. If exploited, this vulnerability allows remote attackers…
CVE-2021-34354High7.62021-10-01A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Photo Station. If exploited, this vulnerability allows remote attack…
CVE-2018-0722High7.52019-02-01Path Traversal vulnerability in Photo Station versions: 5.7.2 and earlier in QTS 4.3.4, 5.4.4 and earlier in QTS 4.3.3, 5.2.8 and earlier in QTS 4.2.6 could al…
CVE-2023-47562High7.42024-02-02An OS command injection vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow authenticated users to execute com…
CVE-2021-44057High7.12022-05-05An improper authentication vulnerability has been reported to affect QNAP device running Photo Station. If exploited, this vulnerability allows attackers to co…
CVE-2024-32770Medium6.32024-11-22A cross-site scripting (XSS) vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow remote attackers who have gai…
CVE-2024-32769Medium6.32024-11-22A cross-site scripting (XSS) vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow remote attackers who have gai…
CVE-2024-32768Medium6.32024-11-22A cross-site scripting (XSS) vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow remote attackers who have gai…
CVE-2024-32767Medium6.32024-11-22A cross-site scripting (XSS) vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow remote attackers who have gai…
CVE-2020-2502Medium6.12021-02-17This cross-site scripting vulnerability in Photo Station allows remote attackers to inject malicious code. QANP We have already fixed this vulnerability in the…
CVE-2020-2491Medium6.12020-12-10This cross-site scripting vulnerability in Photo Station allows remote attackers to inject malicious code. QANP We have already fixed this vulnerability in the…
CVE-2018-19956Medium6.12020-11-02The cross-site scripting vulnerability has been reported to affect earlier versions of Photo Station. If exploited, the vulnerability could allow remote attack…
CVE-2018-19955Medium6.12020-11-02The cross-site scripting vulnerability has been reported to affect earlier versions of Photo Station. If exploited, the vulnerability could allow remote attack…
CVE-2018-19954Medium6.12020-11-02The cross-site scripting vulnerability has been reported to affect earlier versions of Photo Station. If exploited, the vulnerability could allow remote attack…