A vulnerability classified as critical has been found in Synology Photo Station up to 6.3/6.8.11 (Network Attached Storage Software). Affected is an unknown function of the file SYNO.PhotoStation.File of the component File Upload. The manipulation of the argument uploadphoto as part of a Parameter leads to a path traversal vulnerability. CWE is classifying the issue as CWE-22. The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. This is going to have an impact on confidentiality, integrity, and availability. CVE summarizes:

Relative path traversal vulnerability in SYNO.PhotoStation.File in Synology Photo Station before 6.8.11-3489 and before 6.3-2977 allows remote attackers to upload arbitrary files via the uploadphoto parameter.

The weakness was presented 06/30/2019 (Website). The advisory is shared for download at synology.com. This vulnerability is traded as CVE-2019-11822 since 05/08/2019. The exploitability is told to be easy. It is possible to launch the attack remotely. The successful exploitation requires a authentication. There are known technical details, but no exploit is available. The MITRE ATT&CK project declares the attack technique as T1006.

Upgrading to version 6.3-2977 or 6.8.11-3489 eliminates this vulnerability.

See 137087 for similar entry.

Productinfo

Type

• Network Attached Storage Software

Vendor

• Synology

Name

• Photo Station

Version

• 6.0
• 6.1
• 6.2
• 6.3
• 6.8.0
• 6.8.1
• 6.8.2
• 6.8.3
• 6.8.4
• 6.8.5
• 6.8.6
• 6.8.7
• 6.8.8
• 6.8.9
• 6.8.10
• 6.8.11

License

• commercial

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion