CVE-2016-10330

Summary

Directory traversal vulnerability in synophoto_dsm_user, a SUID program, as used in Synology Photo Station before 6.5.3-3226 allows local users to write to arbitrary files via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
SynologySynology Photo StationAll versions prior to version 6.5.3-3226affected

Weaknesses

  • CWE-22: Directory Traversal (CWE-22); Privilege Escalation (CWE-269)

ADP Enrichment

CVE Program Container

Additional References

References