CVE-2021-29089

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0570%

EPSS Percentile11.77th

Published2021年6月2日

Last Modified2024年11月21日

Vulnerability Description

Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in thumbnail component in Synology Photo Station before 6.8.14-3500 allows remote attackers users to execute arbitrary SQL commands via unspecified vectors.

Affected Platforms (CPE)

📦

Synology

Photo Station

>= 6.8 and < 6.8.14-3500

References & Advisories

🔗 https://www.synology.com/security/advisory/Synology_SA_20_20

Vulnerability Description

Affected Platforms (CPE)

Photo Station

References & Advisories

相關漏洞威脅