Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A design flaw in authentication in Synology Photo Station 6.0-2528 through 6.7.1-3419 allows local users to obtain credentials via cmdline. Synology Photo Station employs the synophoto_dsm_user program to authenticate username and password by "synophoto_dsm_user --auth USERNAME PASSWORD", and local users are able to obtain credentials by sniffing "/proc/*/cmdline".
CVSS Information
N/A
Vulnerability Type
不充分的凭证保护机制
Vulnerability Title
Synology Photo Station 安全漏洞
Vulnerability Description
Synology Photo Station是群晖科技(Synology)公司的一套用于在互联网上共享图片、视频和博客的解决方案。 Synology Photo Station 6.0-2528版本至6.7.1-3419版本中的身份验证存在安全漏洞。本地攻击者可借助命令行利用该漏洞获取证书。
CVSS Information
N/A
Vulnerability Type
N/A