Synology.Photo.Station.index.PHP.Information.Disclosure

description-logoDescription

This indicates an attack attempt to exploit an Information Disclosure vulnerability in Synology Photo Station.
The vulnerability is due to an error when the vulnerable software attempts to handle maliciously crafted packet. A remote attacker can exploit this to gain unauthorized access to sensitive information, leading to further attacks.

affected-products-logoAffected Products

Synology Photo Station before 6.7.3-3432 and 6.3-2967

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Refer to the vendor's advisory for updates:
https://www.synology.com/en-global/support/security/Synology_SA_17_34_PhotoStation

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-06-13 14.632 Severity:medium:high
2019-04-03 14.585 Sig Added