Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qnap iartist lite vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2015-7261
The FTP service in QNAP iArtist Lite prior to 1.4.54, as distributed with QNAP Signage Station prior to 2.0.1, has hardcoded credentials, which makes it easier for remote malicious users to obtain access via a session on TCP port 21.
Qnap Iartist Lite
Qnap Signage Station
8.8
CVSSv3
CVE-2015-6022
Unrestricted file upload vulnerability in QNAP Signage Station prior to 2.0.1 allows remote authenticated users to execute arbitrary code by uploading an executable file, and then accessing this file via an unspecified URL.
Qnap Signage Station
7.5
CVSSv3
CVE-2015-6036
QNAP Signage Station prior to 2.0.1 allows remote malicious users to bypass authentication, and consequently upload files, via a spoofed HTTP request.
Qnap Sinage Station 2.0.0
7.5
CVSSv3
CVE-2015-7262
QNAP iArtist Lite prior to 1.4.54, as distributed with QNAP Signage Station prior to 2.0.1, allows remote authenticated users to gain privileges by registering an executable file, and then waiting for this file to be run in a privileged context after a reboot.
Qnap Iartist Lite
Qnap Signage Station
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started