CVE-2017-16769

MEDIUM

Synology Photo Station <6.8.1-3458 - Info Disclosure

Title source: llm

Description

Exposure of private information vulnerability in Photo Viewer in Synology Photo Station 6.8.1-3458 allows remote attackers to obtain metadata from password-protected photographs via the map viewer mode.

References (1)

[Vendor Advisory] https://www.synology.com/en-global/support/security/Synology_SA_17_76

Scores

CVSS v3 5.3

EPSS 0.0023

EPSS Percentile 45.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

CWE

CWE-359 CWE-200

Status published

Products (1)

synology/photo_station 6.8.1-3458

Published Feb 23, 2018

Tracked Since Feb 18, 2026