CVE-2017-12079

Published: Dec 4, 2017

Modified: Sep 16, 2024

PUBLISHED

Description

Files or directories accessible to external parties vulnerability in picasa.php in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allows remote attackers to obtain arbitrary files via prog_id field.

Vendor	Product	Versions
Synology	Photo Station	affected `before 6.8.1-3458` affected `before 6.3-2970`

Weaknesses (CWE)

CWE-552

References

https://www.synology.com/en-global/support/security/Synology_SA_17_63_Photo_Station

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-12079

Description

Affected Products

Weaknesses (CWE)

References