Unrestricted File Upload Vulnerability in QNAP Signage Station: Remote Code Execution

CVE-2015-6022 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

Unrestricted file upload vulnerability in QNAP Signage Station before 2.0.1 allows remote authenticated users to execute arbitrary code by uploading an executable file, and then accessing this file via an unspecified URL.

Learn more about our User Device Pen Test.