Synology Photo Station vulnerabilities

33 known vulnerabilities affecting synology/photo_station.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL6HIGH15MEDIUM12

Vulnerabilities

Page 2 of 2

CVE-2017-11151CRITICALCVSS 9.8PoC≤ 6.7.2-3429v6.3-29672017-08-08

CVE-2017-11151 [CRITICAL] CWE-287 CVE-2017-11151: A vulnerability in synotheme_upload.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 all A vulnerability in synotheme_upload.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to upload arbitrary files without authentication via the logo_upload action.

nvd

CVE-2017-11153CRITICALCVSS 9.8PoC≤ 6.7.2-3429v6.3-29672017-08-08

CVE-2017-11153 [CRITICAL] CWE-502 CVE-2017-11153: Deserialization vulnerability in synophoto_csPhotoMisc.php in Synology Photo Station before 6.7.3-34 Deserialization vulnerability in synophoto_csPhotoMisc.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to gain administrator privileges via a crafted serialized payload.

nvd

CVE-2017-11154HIGHCVSS 7.2PoC≤ 6.7.2-3429v6.3-29672017-08-08

CVE-2017-11154 [HIGH] CWE-434 CVE-2017-11154: Unrestricted file upload vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6. Unrestricted file upload vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to create arbitrary PHP scripts via the type parameter.

nvd

CVE-2017-11155HIGHCVSS 7.5PoC≤ 6.7.2-3429v6.3-29672017-08-08

CVE-2017-11155 [HIGH] CWE-205 CVE-2017-11155: An information exposure vulnerability in index.php in Synology Photo Station before 6.7.3-3432 and 6 An information exposure vulnerability in index.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to obtain sensitive system information via unspecified vectors.

nvd

CVE-2017-11152HIGHCVSS 7.5PoC≤ 6.7.2-3429v6.3-29672017-08-08

CVE-2017-11152 [HIGH] CWE-22 CVE-2017-11152: Directory traversal vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6.7.3-3 Directory traversal vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to write arbitrary files via the path parameter.

nvd

CVE-2015-9102MEDIUMCVSS 5.4≤ 6.3-2960v6.0+1 more2017-06-30

CVE-2015-9102 [MEDIUM] CWE-79 CVE-2015-9102: Multiple cross-site scripting (XSS) vulnerabilities in Synology Photo Station 6.0 before 6.0-2638 an Multiple cross-site scripting (XSS) vulnerabilities in Synology Photo Station 6.0 before 6.0-2638 and 6.3 before 6.3-2962 allow remote authenticated attackers to inject arbitrary web script or HTML via the (1) album name, (2) file name of uploaded photos, (3) description of photos, or (4) tag of the photos.

cvelistv5nvd

CVE-2017-9552HIGHCVSS 7.8v6.0-2528v6.0-2636+22 more2017-06-13

CVE-2017-9552 [HIGH] CWE-522 CVE-2017-9552: A design flaw in authentication in Synology Photo Station 6.0-2528 through 6.7.1-3419 allows local u A design flaw in authentication in Synology Photo Station 6.0-2528 through 6.7.1-3419 allows local users to obtain credentials via cmdline. Synology Photo Station employs the synophoto_dsm_user program to authenticate username and password by "synophoto_dsm_user --auth USERNAME PASSWORD", and local users are able to obtain credentials by sniffing "/proc

nvd

CVE-2016-10329CRITICALCVSS 9.8≤ 6.5.2-32252017-05-12

CVE-2016-10329 [CRITICAL] CWE-77 CVE-2016-10329: Command injection vulnerability in login.php in Synology Photo Station before 6.5.3-3226 allows remo Command injection vulnerability in login.php in Synology Photo Station before 6.5.3-3226 allows remote attackers to execute arbitrary code via shell metacharacters in the crafted 'X-Forwarded-For' header.

nvd

CVE-2016-10330HIGHCVSS 7.1≤ 6.5.2-32252017-05-12

CVE-2016-10330 [HIGH] CWE-22 CVE-2016-10330: Directory traversal vulnerability in synophoto_dsm_user, a SUID program, as used in Synology Photo S Directory traversal vulnerability in synophoto_dsm_user, a SUID program, as used in Synology Photo Station before 6.5.3-3226 allows local users to write to arbitrary files via unspecified vectors.

nvd

CVE-2016-10331HIGHCVSS 7.5≤ 6.5.2-32252017-05-12

CVE-2016-10331 [HIGH] CWE-22 CVE-2016-10331: Directory traversal vulnerability in download.php in Synology Photo Station before 6.5.3-3226 allows Directory traversal vulnerability in download.php in Synology Photo Station before 6.5.3-3226 allows remote attackers to read arbitrary files via a full pathname in the id parameter.

nvd

CVE-2016-10322HIGHCVSS 8.8≤ 6.3-29542017-04-10

CVE-2016-10322 [HIGH] CWE-77 CVE-2016-10322: Synology Photo Station before 6.3-2958 allows remote authenticated guest users to execute arbitrary Synology Photo Station before 6.3-2958 allows remote authenticated guest users to execute arbitrary commands via shell metacharacters in the X-Forwarded-For HTTP header to photo/login.php.

nvd

CVE-2016-10323HIGHCVSS 7.8fixed in 6.3-29582017-04-10

CVE-2016-10323 [HIGH] CWE-264 CVE-2016-10323: Synology Photo Station before 6.3-2958 allows local users to gain privileges by leveraging setuid ex Synology Photo Station before 6.3-2958 allows local users to gain privileges by leveraging setuid execution of a "synophoto_dsm_user --copy-no-ea" command.

nvd

CVE-2015-4656MEDIUMCVSS 4.3≤ 6.3-29442015-06-18

CVE-2015-4656 [MEDIUM] CWE-79 CVE-2015-4656: Multiple cross-site scripting (XSS) vulnerabilities in Synology Photo Station before 6.3-2945 allow Multiple cross-site scripting (XSS) vulnerabilities in Synology Photo Station before 6.3-2945 allow remote attackers to inject arbitrary web script or HTML via the (1) success parameter to login.php or (2) crafted URL parameters to index.php, as demonstrated by the t parameter to photo/.

nvd

← Previous2 / 2