Skip to main content

Signage Station

3 CVEs product

Monthly

CVE-2015-7262 HIGH This Week

QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, allows remote authenticated users to gain privileges by registering an executable file, and then waiting for. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. No vendor patch available.

Qnap Information Disclosure Iartist Lite Signage Station
NVD
CVSS 3.0
7.5
EPSS
0.2%
CVE-2015-7261 CRITICAL Act Now

The FTP service in QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, has hardcoded credentials, which makes it easier for remote attackers to obtain access via a. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Authentication Bypass Iartist Lite Signage Station
NVD
CVSS 3.0
9.8
EPSS
0.3%
CVE-2015-6022 HIGH This Week

Unrestricted file upload vulnerability in QNAP Signage Station before 2.0.1 allows remote authenticated users to execute arbitrary code by uploading an executable file, and then accessing this file. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Qnap RCE File Upload Signage Station
NVD
CVSS 3.0
8.8
EPSS
0.7%
EPSS 0% CVSS 7.5
HIGH This Week

QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, allows remote authenticated users to gain privileges by registering an executable file, and then waiting for. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. No vendor patch available.

Qnap Information Disclosure Iartist Lite +1
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

The FTP service in QNAP iArtist Lite before 1.4.54, as distributed with QNAP Signage Station before 2.0.1, has hardcoded credentials, which makes it easier for remote attackers to obtain access via a. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Qnap Authentication Bypass Iartist Lite +1
NVD
EPSS 1% CVSS 8.8
HIGH This Week

Unrestricted file upload vulnerability in QNAP Signage Station before 2.0.1 allows remote authenticated users to execute arbitrary code by uploading an executable file, and then accessing this file. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Qnap RCE File Upload +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy