CVE-2015-6022

Published: Feb 27, 2016Modified: May 6, 2026

8.8

Vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

Unrestricted file upload vulnerability in QNAP Signage Station before 2.0.1 allows remote authenticated users to execute arbitrary code by uploading an executable file, and then accessing this file via an unspecified URL.

Affected (1)

Products: Qnap: Signage Station

Qnap

1 product

Signage Station

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Qnap Signage Station	Up to 2.0

References (2)

http://www.kb.cert.org/vuls/id/444472

Source: cret@cert.org

Third Party AdvisoryUS Government Resource

http://www.kb.cert.org/vuls/id/444472

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

Timeline

No history available yet.