CVE-2018-13297

Summary

Information exposure vulnerability in SYNO.SynologyDrive.Files in Synology Drive before 1.1.2-10562 allows remote attackers to obtain sensitive system information via the dsm_path parameter.

Affected Software

VendorProductVersion RangeStatus
SynologyDriveunspecified < 1.1.2-10562affected

Weaknesses

  • CWE-200: Information Exposure (CWE-200)

ADP Enrichment

CVE Program Container

Additional References

References