How severe is CVE-2017-16770?

CVE-2017-16770 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2017-16770

Name: surveillance_station
Author: synology

6.5MEDIUM

File and directory information exposure vulnerability in SYNO.SurveillanceStation.PersonalSettings.Photo in Synology Surveillance Station before 8.1.2-5469 allows remote authenticated users to obtain

Publicado: 2/27/2018Actualizado: 11/21/2024

Descripción

File and directory information exposure vulnerability in SYNO.SurveillanceStation.PersonalSettings.Photo in Synology Surveillance Station before 8.1.2-5469 allows remote authenticated users to obtain other user's sensitive files via the filename parameter.

Análisis IAImpulsado por IA

Productos Afectados

synologysurveillance_station

Referencias

https://www.synology.com/en-global/support/security/Synology_SA_17_77
Vendor Advisory
https://www.synology.com/en-global/support/security/Synology_SA_17_77
Vendor Advisory