PT-2022-3454 · Qnap · Photo Station

Thomas Fady

Published

2022-05-05

Updated

2022-05-13

CVE-2021-44057

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Photo Station versions prior to 5.4.13 Photo Station versions prior to 5.7.16 Photo Station versions prior to 6.0.20

Description An improper authentication issue affects QNAP devices running Photo Station, allowing attackers to bypass security restrictions and compromise the system's security.

Recommendations For versions prior to 5.4.13, update to Photo Station 5.4.13 or later. For versions prior to 5.7.16, update to Photo Station 5.7.16 or later. For versions prior to 6.0.20, update to Photo Station 6.0.20 or later.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

BDU:2022-04232

CVE-2021-44057

Affected Products

Photo Station

PT-2022-3454 · Qnap · Photo Station

CVE-2021-44057

Weakness Enumeration

Related Identifiers

Affected Products

References · 5