Description
File and directory information exposure vulnerability in SYNO.SurveillanceStation.PersonalSettings.Photo in Synology Surveillance Station before 8.1.2-5469 allows remote authenticated users to obtain other user's sensitive files via the filename parameter.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Synology | Surveillance Station | affected |
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2017-7949 | File and directory information exposure vulnerability in SYNO.SurveillanceStation.PersonalSettings.Photo in Synology Surveillance Station before 8.1.2-5469 allows remote authenticated users to obtain other user's sensitive files via the filename parameter. |
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: synology
Published:
Updated: 2024-09-16T19:30:32.292Z
Reserved: 2017-11-10T00:00:00.000Z
Link: CVE-2017-16770
Vulnrichment
No data.
NVD
Status : Modified
Published: 2018-02-27T15:29:00.380
Modified: 2024-11-21T03:16:56.350
Link: CVE-2017-16770
Redhat
No data.
OpenCVE Enrichment
No data.