CVE-2019-7194
QNAP Photo Station Path Traversal Vulnerability
CVSS
—
No CVSS
EPSS
83.0%
p100
KEV
YES
Jun 8, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
83.0%EPSS · 30 days83.0%
2026-06-302026-07-16
Product
QNAP / Photo Station
Vulnerability
QNAP Photo Station Path Traversal Vulnerability
Added to KEV
Jun 8, 2022
Remediate by
Jun 22, 2022
Known ransomware use
Yes
Summary description
QNAP devices running Photo Station contain an external control of file name or path vulnerability allowing remote attackers to access or modify system files.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-7194