CVE-2018-13288
5.3
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Summary
Information exposure vulnerability in SYNO.FolderSharing.List in Synology File Station before 1.2.3-0252 and before 1.1.5-0125 allows remote attackers to obtain sensitive information via the (1) folder_path or (2) real_path parameter.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Synology | File Station | unspecified < 1.2.3-0252 | affected |
| Synology | File Station | unspecified < 1.1.5-0125 | affected |
Weaknesses
- CWE-200: Information Exposure (CWE-200)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.