CVE-2021-29089

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0570%

EPSS Percentile11.77th

PublishedJun 2, 2021

Last ModifiedNov 21, 2024

Vulnerability Description

Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in thumbnail component in Synology Photo Station before 6.8.14-3500 allows remote attackers users to execute arbitrary SQL commands via unspecified vectors.

Affected Platforms (CPE)

📦

Synology

Photo Station

>= 6.8 and < 6.8.14-3500

References & Advisories

🔗 https://www.synology.com/security/advisory/Synology_SA_20_20

Vulnerability Description

Affected Platforms (CPE)

Photo Station

References & Advisories

Related Vulnerabilities