CVE-2017-12080 is a vulnerability in Synology Photo Station
Published on December 4, 2017
An information exposure vulnerability in default HTTP configuration file in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allows remote attackers to obtain sensitive system information via .htaccess file.
Weakness Type
What is an Information Disclosure Vulnerability?
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CVE-2017-12080 has been classified to as an Information Disclosure vulnerability or weakness.
Products Associated with CVE-2017-12080
Want to know whenever a new CVE is published for Synology Photo Station? stack.watch will email you.
Affected Versions
Synology Photo Station:- Version before 6.8.1-3458 is affected.
- Version before 6.3-2970 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.