Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2017-15886

Server-side request forgery (SSRF) vulnerability in Link Preview in Synology Chat before 2.0.0-1124 allows remote authenticated users to download arbitrary local files via a crafted URI.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.1%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
Products affected by CVE-2017-15886
  • Synology » Chat » Version: 1.0.0-0126
    cpe:2.3:a:synology:chat:1.0.0-0126
  • Synology » Chat » Version: 1.0.0-0127
    cpe:2.3:a:synology:chat:1.0.0-0127
  • Synology » Chat » Version: 1.0.2-0158
    cpe:2.3:a:synology:chat:1.0.2-0158
  • Synology » Chat » Version: 1.0.2-0159
    cpe:2.3:a:synology:chat:1.0.2-0159
  • Synology » Chat » Version: 1.1.0-0806
    cpe:2.3:a:synology:chat:1.1.0-0806
  • Synology » Chat » Version: 1.1.1-0902
    cpe:2.3:a:synology:chat:1.1.1-0902


Products
Pricing
Contact Us

Shodan ® - All rights reserved