CVE-2021-44057

An improper authentication vulnerability has been reported to affect QNAP device running Photo Station. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of Photo Station: Photo Station 6.0.20 ( 2022/02/15 ) and later Photo Station 5.7.16 ( 2022/02/11 ) and later Photo Station 5.4.13 ( 2022/02/11 ) and later
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:qnap:photo_station:*:*:*:*:*:*:*:*
cpe:2.3:a:qnap:photo_station:*:*:*:*:*:*:*:*
cpe:2.3:a:qnap:photo_station:*:*:*:*:*:*:*:*

History

13 May 2022, 20:10

Type Values Removed Values Added
CPE cpe:2.3:a:qnap:photo_station:*:*:*:*:*:*:*:*
First Time Qnap
Qnap photo Station
CWE CWE-287
CVSS v2 : unknown
v3 : unknown
v2 : 10.0
v3 : 9.8
References (MISC) https://www.qnap.com/en/security-advisory/qsa-22-15 - (MISC) https://www.qnap.com/en/security-advisory/qsa-22-15 - Vendor Advisory

05 May 2022, 17:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-05-05 17:15

Updated : 2022-05-13 20:10


NVD link : CVE-2021-44057

Mitre link : CVE-2021-44057


JSON object : View

Products Affected

qnap

  • photo_station
CWE
CWE-287

Improper Authentication