Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
synology photo station 6.3-2958 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2016-10322
Synology Photo Station prior to 6.3-2958 allows remote authenticated guest users to execute arbitrary commands via shell metacharacters in the X-Forwarded-For HTTP header to photo/login.php.
Synology Photo Station
7.8
CVSSv3
CVE-2017-9552
A design flaw in authentication in Synology Photo Station 6.0-2528 up to and including 6.7.1-3419 allows local users to obtain credentials via cmdline. Synology Photo Station employs the synophoto_dsm_user program to authenticate username and password by "synophoto_dsm_user ...
Synology Photo Station 6.0-2636
Synology Photo Station 6.5.2-3225
Synology Photo Station 6.3-2963
Synology Photo Station 6.3-2962
Synology Photo Station 6.0-2640
Synology Photo Station 6.6.2-3346
Synology Photo Station 6.3-2965
Synology Photo Station 6.6.1-3346
Synology Photo Station 6.3-2964
Synology Photo Station 6.5.1-3223
Synology Photo Station 6.5.0-3218
Synology Photo Station 6.3-2944
Synology Photo Station 6.0-2528
Synology Photo Station 6.3-2958
Synology Photo Station 6.0-2638
Synology Photo Station 6.6.1-3345
Synology Photo Station 6.6.0-3339
Synology Photo Station 6.5.3-3226
Synology Photo Station 6.3-2960
Synology Photo Station 6.7.1-3419
Synology Photo Station 6.4-3166
Synology Photo Station 6.0-2639
7.8
CVSSv3
CVE-2016-10323
Synology Photo Station prior to 6.3-2958 allows local users to gain privileges by leveraging setuid execution of a "synophoto_dsm_user --copy-no-ea" command.
Synology Photo Station
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started