Vulnerability in Synology Photo Station

CVE-2017-16769

Exposure of private information vulnerability in Photo Viewer in Synology Photo Station 6.8.1-3458 allows remote attackers to obtain metadata from password-protected photographs via the map viewer mode.

EPSS: 0.002 (46.0th percentile) — read the EPSS interpretation.

Affected products

Synology Photo Station — versions 6.8.1-3458

Weakness classification (CWE)

CWE-359 — Exposure of Private Personal Information to an Unauthorized Actor

References

www.synology.com/en-global/support/security/Synology_SA_17_76 (x_refsource_CONFIRM)