Missing authorization vulnerability in GetLiveViewPath...
High severity
Unreviewed
Published
Mar 28, 2024
to the GitHub Advisory Database
Description
Published by the National Vulnerability Database
Mar 28, 2024
Published to the GitHub Advisory Database
Mar 28, 2024
Missing authorization vulnerability in GetLiveViewPath webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to obtain sensitive information via unspecified vectors.
References