CVE-2015-7261 Information
Share on:
Feb 14, 2021
cve
Description
The FTP service in QNAP iArtist Lite before 1.4.54 as distributed with QNAP Signage Station before 2.0.1 has hardcoded credentials which makes it easier for remote attackers to obtain access via a session on TCP port 21.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Reference
http://www.kb.cert.org/vuls/id/444472
Attack Complexity
LOW
Privileges Required
NONE
User Interaction Required
NONE
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
9.8