CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-12080

An information exposure vulnerability in default HTTP configuration file in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allows remote attackers to obtain sensitive system information via .htaccess file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.8%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

Products affected by CVE-2017-12080

Synology » Photo Station » Version: 6.3

cpe:2.3:a:synology:photo_station:6.3
Synology » Photo Station » Version: 6.3-2944

cpe:2.3:a:synology:photo_station:6.3-2944
Synology » Photo Station » Version: 6.3-2958

cpe:2.3:a:synology:photo_station:6.3-2958
Synology » Photo Station » Version: 6.3-2960

cpe:2.3:a:synology:photo_station:6.3-2960
Synology » Photo Station » Version: 6.3-2962

cpe:2.3:a:synology:photo_station:6.3-2962
Synology » Photo Station » Version: 6.3-2963

cpe:2.3:a:synology:photo_station:6.3-2963
Synology » Photo Station » Version: 6.3-2964

cpe:2.3:a:synology:photo_station:6.3-2964
Synology » Photo Station » Version: 6.3-2965

cpe:2.3:a:synology:photo_station:6.3-2965
Synology » Photo Station » Version: 6.3-2967

cpe:2.3:a:synology:photo_station:6.3-2967
Synology » Photo Station » Version: 6.3-2968

cpe:2.3:a:synology:photo_station:6.3-2968
Synology » Photo Station » Version: 6.8

cpe:2.3:a:synology:photo_station:6.8
Synology » Photo Station » Version: 6.8.0-3456

cpe:2.3:a:synology:photo_station:6.8.0-3456

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-12080

Products

Pricing

Contact Us