CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-2809

The Multicast DNS (mDNS) responder in Synology DiskStation Manager (DSM) before 3.1 inadvertently responds to unicast queries with source addresses that are not link-local, which allows remote attackers to cause a denial of service (traffic amplification) or obtain potentially sensitive information via port-5353 UDP packets to the Avahi component.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.033

EPSS Ranking 86.7%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.kb.cert.org/vuls/id/550620
http://www.kb.cert.org/vuls/id/BLUU-9TLSHD
http://www.securityfocus.com/bid/73683
http://www.kb.cert.org/vuls/id/550620
http://www.kb.cert.org/vuls/id/BLUU-9TLSHD
http://www.securityfocus.com/bid/73683

Products affected by CVE-2015-2809

Synology » Diskstation Manager » Version: N/A

cpe:2.3:o:synology:diskstation_manager:-
Synology » Diskstation Manager » Version: 3.0

cpe:2.3:o:synology:diskstation_manager:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-2809

Products

Pricing

Contact Us