An information exposure vulnerability in index.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to obtain sensitive system information via unspecified vectors.
The product’s behaviors indicate important differences that may be observed by unauthorized actors in a way that reveals (1) its internal state or decision process, or (2) differences from other products with equivalent functionality.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Photo_station | Synology | * | 6.7.2-3429 (including) |
Photo_station | Synology | 6.3-2967 (including) | 6.3-2967 (including) |