Vulnerability Details CVE-2016-6554
Synology NAS servers DS107, firmware version 3.1-1639 and prior, and DS116, DS213, firmware versions prior to 5.2-5644-1, use non-random default credentials of: guest:(blank) and admin:(blank) . A remote network attacker can gain privileged access to a vulnerable device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.018
EPSS Ranking 82.2%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2016-6554
-
cpe:2.3:h:synology:ds107:-
-
cpe:2.3:h:synology:ds116:-
-
cpe:2.3:h:synology:ds213:-
-
cpe:2.3:o:synology:ds107_firmware:3.1-1594
-
cpe:2.3:o:synology:ds107_firmware:3.1-1605
-
cpe:2.3:o:synology:ds107_firmware:3.1-1613
-
cpe:2.3:o:synology:ds107_firmware:3.1-1632
-
cpe:2.3:o:synology:ds107_firmware:3.1-1635
-
cpe:2.3:o:synology:ds107_firmware:3.1-1636
-
cpe:2.3:o:synology:ds107_firmware:3.1-1637
-
cpe:2.3:o:synology:ds107_firmware:3.1-1638
-
cpe:2.3:o:synology:ds107_firmware:3.1-1639
-
cpe:2.3:o:synology:ds116_firmware:5.2-5644-1
-
cpe:2.3:o:synology:ds213_firmware:4.0-2243
-
cpe:2.3:o:synology:ds213_firmware:4.1-2636
-
cpe:2.3:o:synology:ds213_firmware:4.1-2647
-
cpe:2.3:o:synology:ds213_firmware:4.1-2661
-
cpe:2.3:o:synology:ds213_firmware:4.1-2668
-
cpe:2.3:o:synology:ds213_firmware:4.2-3202
-
cpe:2.3:o:synology:ds213_firmware:4.2-3211
-
cpe:2.3:o:synology:ds213_firmware:4.3-3776
-
cpe:2.3:o:synology:ds213_firmware:4.3-3776-1
-
cpe:2.3:o:synology:ds213_firmware:4.3-3776-2
-
cpe:2.3:o:synology:ds213_firmware:4.3-3776-3
-
cpe:2.3:o:synology:ds213_firmware:4.3-3810
-
cpe:2.3:o:synology:ds213_firmware:4.3-3810-1
-
cpe:2.3:o:synology:ds213_firmware:4.3-3810-2
-
cpe:2.3:o:synology:ds213_firmware:4.3-3810-3
-
cpe:2.3:o:synology:ds213_firmware:4.3-3810-4
-
cpe:2.3:o:synology:ds213_firmware:4.3-3827
-
cpe:2.3:o:synology:ds213_firmware:4.3-3827-1
-
cpe:2.3:o:synology:ds213_firmware:4.3-3827-2
-
cpe:2.3:o:synology:ds213_firmware:4.3-3827-3
-
cpe:2.3:o:synology:ds213_firmware:4.3-3827-4
-
cpe:2.3:o:synology:ds213_firmware:4.3-3827-5
-
cpe:2.3:o:synology:ds213_firmware:4.3-3827-6
-
cpe:2.3:o:synology:ds213_firmware:4.3-3827-7
-
cpe:2.3:o:synology:ds213_firmware:5.0-4458
-
cpe:2.3:o:synology:ds213_firmware:5.0-4458-1
-
cpe:2.3:o:synology:ds213_firmware:5.0-4458-2
-
cpe:2.3:o:synology:ds213_firmware:5.0-4482
-
cpe:2.3:o:synology:ds213_firmware:5.0-4493
-
cpe:2.3:o:synology:ds213_firmware:5.0-4493-1
-
cpe:2.3:o:synology:ds213_firmware:5.0-4493-2
-
cpe:2.3:o:synology:ds213_firmware:5.0-4493-3
-
cpe:2.3:o:synology:ds213_firmware:5.0-4493-4
-
cpe:2.3:o:synology:ds213_firmware:5.0-4493-5
-
cpe:2.3:o:synology:ds213_firmware:5.0-4528
-
cpe:2.3:o:synology:ds213_firmware:5.0-4528-1
-
cpe:2.3:o:synology:ds213_firmware:5.0-4528-2
-
cpe:2.3:o:synology:ds213_firmware:5.1-5004
-
cpe:2.3:o:synology:ds213_firmware:5.1-5004-2
-
cpe:2.3:o:synology:ds213_firmware:5.1-5021
-
cpe:2.3:o:synology:ds213_firmware:5.1-5021-2
-
cpe:2.3:o:synology:ds213_firmware:5.1-5022
-
cpe:2.3:o:synology:ds213_firmware:5.1-5022-1
-
cpe:2.3:o:synology:ds213_firmware:5.1-5022-2
-
cpe:2.3:o:synology:ds213_firmware:5.1-5022-3
-
cpe:2.3:o:synology:ds213_firmware:5.1-5022-4
-
cpe:2.3:o:synology:ds213_firmware:5.1-5022-5
-
cpe:2.3:o:synology:ds213_firmware:5.1-5055
-
cpe:2.3:o:synology:ds213_firmware:5.2-5565
-
cpe:2.3:o:synology:ds213_firmware:5.2-5565-1
-
cpe:2.3:o:synology:ds213_firmware:5.2-5565-2
-
cpe:2.3:o:synology:ds213_firmware:5.2-5592
-
cpe:2.3:o:synology:ds213_firmware:5.2-5592-1
-
cpe:2.3:o:synology:ds213_firmware:5.2-5592-2
-
cpe:2.3:o:synology:ds213_firmware:5.2-5592-3
-
cpe:2.3:o:synology:ds213_firmware:5.2-5592-4
-
cpe:2.3:o:synology:ds213_firmware:5.2-5644
-
cpe:2.3:o:synology:ds213_firmware:5.2-5644-1