CVE-2019-7195CISA KEVEPSS p99.8%

CVE-2019-7195QNAP Photo Station Path Traversal Vulnerability

QNAP / Photo Station

Description

QNAP devices running Photo Station contain an external control of file name or path vulnerability allowing remote attackers to access or modify system files.

Scoring

EPSS89.68% probability of exploitation · percentile 99.8% · 2026-06-17T12:03:21Z

CISA KEV entry

Added to KEV: 2022-06-08

(incoming)1

TypeTargetConfidenceTier
KEVEntryQNAP Photo Station Path Traversal Vulnerabilitykev-cve-2019-71950%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
QNAP Photo Station Improper Access Control Vulnerability
CVE
QNAP NAS File Station Command Injection Vulnerability
CVE
QNAP NAS File Station Cross-Site Scripting Vulnerability
CVE
QNAP QTS Improper Input Validation Vulnerability
CVE
QNAP Network-Attached Storage (NAS) Command Injection Vulnerability
CVE
QNAP Photo Station Externally Controlled Reference Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.