PULSE
LIVE45signals / 24h
FEED
ransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomkrybit reclama a www.lagus.cz · CZ · Business Servicesransomgunra reclama a Dissinger and Dissinger Law Firm · US · Business Servicesransomplay reclama a Boston Electric and Telephone · US · Telecommunicationransomplay reclama a Wring Group · GB · Not Foundransomincransom reclama a asa-international.com · GB · Business Servicesransomplay reclama a AG Scholtes · NL · Manufacturingransomplay reclama a Andorra Life · AD · Healthcareransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomkrybit reclama a www.lagus.cz · CZ · Business Servicesransomgunra reclama a Dissinger and Dissinger Law Firm · US · Business Servicesransomplay reclama a Boston Electric and Telephone · US · Telecommunicationransomplay reclama a Wring Group · GB · Not Foundransomincransom reclama a asa-international.com · GB · Business Servicesransomplay reclama a AG Scholtes · NL · Manufacturingransomplay reclama a Andorra Life · AD · Healthcare
← All CVEs
CVE Watch

CVE-2019-7195

QNAP Photo Station Path Traversal Vulnerability

CVSS

No CVSS

EPSS

89.7%

p100

KEV

YES

Jun 8, 2022

Exploit Today

80

0-100

Published: · Last modified:

EPSS · 30d
89.7%EPSS · 30 days89.7%
2026-06-302026-07-16
KEV catalog record

Product

QNAP / Photo Station

Vulnerability

QNAP Photo Station Path Traversal Vulnerability

Added to KEV

Jun 8, 2022

Remediate by

Jun 22, 2022

Known ransomware use

Yes

Summary description

QNAP devices running Photo Station contain an external control of file name or path vulnerability allowing remote attackers to access or modify system files.

Required action

Apply updates per vendor instructions.

Notes

https://nvd.nist.gov/vuln/detail/CVE-2019-7195

Related CVEs
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2019-7192
99.8%
KEV80QNAP Photo Station Improper Access Control Vulnerability
CVE-2022-27593
99.7%
KEV80QNAP Photo Station Externally Controlled Reference Vulnerability
CVE-2019-7194
99.6%
KEV80QNAP Photo Station Path Traversal Vulnerability