CVE-2016-10331

Опубликовано: 12 мая 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability in download.php in Synology Photo Station before 6.5.3-3226 allows remote attackers to read arbitrary files via a full pathname in the id parameter.

Ссылки

https://bamboofox.github.io/2017/03/20/Synology-Bug-Bounty-2016/#Vul-06-Local-File-Inclusion
Exploit
Third Party Advisory
https://www.synology.com/en-global/support/security/Photo_Station_6_5_3_3226
Release Notes
https://bamboofox.github.io/2017/03/20/Synology-Bug-Bounty-2016/#Vul-06-Local-File-Inclusion
Exploit
Third Party Advisory
https://www.synology.com/en-global/support/security/Photo_Station_6_5_3_3226
Release Notes

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:synology:photo_station:*:*:*:*:*:*:*:*

Версия до 6.5.2-3225 (включая)

EPSS

Процентиль: 60%

0.00391

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-j6hj-9pq4-66f2