CVE-2021-29092

Summary

Unrestricted upload of file with dangerous type vulnerability in file management component in Synology Photo Station before 6.8.14-3500 allows remote authenticated users to execute arbitrary code via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
SynologySynology Photo Stationunspecified < 6.8.14-3500affected

Weaknesses

  • CWE-434: CWE-434: Unrestricted Upload of File with Dangerous Type

ADP Enrichment

CVE Program Container

Additional References

References