CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15894

Directory traversal vulnerability in the SYNO.FileStation.Extract in Synology DiskStation Manager (DSM) 6.0.x before 6.0.3-8754-3 and before 5.2-5967-6 allows remote authenticated users to write arbitrary files via the dest_folder_path parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.7%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.0

References

Products affected by CVE-2017-15894

Synology » Diskstation Manager » Version: 5.2

cpe:2.3:o:synology:diskstation_manager:5.2
Synology » Diskstation Manager » Version: 5.2-5565

cpe:2.3:o:synology:diskstation_manager:5.2-5565
Synology » Diskstation Manager » Version: 5.2-5565-1

cpe:2.3:o:synology:diskstation_manager:5.2-5565-1
Synology » Diskstation Manager » Version: 5.2-5565-2

cpe:2.3:o:synology:diskstation_manager:5.2-5565-2
Synology » Diskstation Manager » Version: 5.2-5592

cpe:2.3:o:synology:diskstation_manager:5.2-5592
Synology » Diskstation Manager » Version: 5.2-5592-1

cpe:2.3:o:synology:diskstation_manager:5.2-5592-1
Synology » Diskstation Manager » Version: 5.2-5592-2

cpe:2.3:o:synology:diskstation_manager:5.2-5592-2
Synology » Diskstation Manager » Version: 5.2-5592-3

cpe:2.3:o:synology:diskstation_manager:5.2-5592-3
Synology » Diskstation Manager » Version: 5.2-5592-4

cpe:2.3:o:synology:diskstation_manager:5.2-5592-4
Synology » Diskstation Manager » Version: 5.2-5620

cpe:2.3:o:synology:diskstation_manager:5.2-5620
Synology » Diskstation Manager » Version: 5.2-5644

cpe:2.3:o:synology:diskstation_manager:5.2-5644
Synology » Diskstation Manager » Version: 5.2-5644-1

cpe:2.3:o:synology:diskstation_manager:5.2-5644-1
Synology » Diskstation Manager » Version: 5.2-5644-2

cpe:2.3:o:synology:diskstation_manager:5.2-5644-2
Synology » Diskstation Manager » Version: 5.2-5644-3

cpe:2.3:o:synology:diskstation_manager:5.2-5644-3
Synology » Diskstation Manager » Version: 5.2-5644-5

cpe:2.3:o:synology:diskstation_manager:5.2-5644-5
Synology » Diskstation Manager » Version: 5.2-5644-8

cpe:2.3:o:synology:diskstation_manager:5.2-5644-8
Synology » Diskstation Manager » Version: 5.2-5967

cpe:2.3:o:synology:diskstation_manager:5.2-5967
Synology » Diskstation Manager » Version: 5.2-5967-1

cpe:2.3:o:synology:diskstation_manager:5.2-5967-1
Synology » Diskstation Manager » Version: 5.2-5967-2

cpe:2.3:o:synology:diskstation_manager:5.2-5967-2
Synology » Diskstation Manager » Version: 5.2-5967-3

cpe:2.3:o:synology:diskstation_manager:5.2-5967-3
Synology » Diskstation Manager » Version: 5.2-5967-4

cpe:2.3:o:synology:diskstation_manager:5.2-5967-4
Synology » Diskstation Manager » Version: 5.2-5967-5

cpe:2.3:o:synology:diskstation_manager:5.2-5967-5
Synology » Diskstation Manager » Version: 6.0

cpe:2.3:o:synology:diskstation_manager:6.0
Synology » Diskstation Manager » Version: 6.0-7321

cpe:2.3:o:synology:diskstation_manager:6.0-7321
Synology » Diskstation Manager » Version: 6.0-7321-1

cpe:2.3:o:synology:diskstation_manager:6.0-7321-1
Synology » Diskstation Manager » Version: 6.0-7321-2

cpe:2.3:o:synology:diskstation_manager:6.0-7321-2
Synology » Diskstation Manager » Version: 6.0-7321-3

cpe:2.3:o:synology:diskstation_manager:6.0-7321-3
Synology » Diskstation Manager » Version: 6.0-7321-5

cpe:2.3:o:synology:diskstation_manager:6.0-7321-5
Synology » Diskstation Manager » Version: 6.0-7321-6

cpe:2.3:o:synology:diskstation_manager:6.0-7321-6
Synology » Diskstation Manager » Version: 6.0.1-7393

cpe:2.3:o:synology:diskstation_manager:6.0.1-7393
Synology » Diskstation Manager » Version: 6.0.1-7393-1

cpe:2.3:o:synology:diskstation_manager:6.0.1-7393-1
Synology » Diskstation Manager » Version: 6.0.1-7393-2

cpe:2.3:o:synology:diskstation_manager:6.0.1-7393-2
Synology » Diskstation Manager » Version: 6.0.2-8451

cpe:2.3:o:synology:diskstation_manager:6.0.2-8451
Synology » Diskstation Manager » Version: 6.0.2-8451-1

cpe:2.3:o:synology:diskstation_manager:6.0.2-8451-1
Synology » Diskstation Manager » Version: 6.0.2-8451-10

cpe:2.3:o:synology:diskstation_manager:6.0.2-8451-10
Synology » Diskstation Manager » Version: 6.0.2-8451-2

cpe:2.3:o:synology:diskstation_manager:6.0.2-8451-2
Synology » Diskstation Manager » Version: 6.0.2-8451-3

cpe:2.3:o:synology:diskstation_manager:6.0.2-8451-3
Synology » Diskstation Manager » Version: 6.0.2-8451-4

cpe:2.3:o:synology:diskstation_manager:6.0.2-8451-4
Synology » Diskstation Manager » Version: 6.0.2-8451-5

cpe:2.3:o:synology:diskstation_manager:6.0.2-8451-5
Synology » Diskstation Manager » Version: 6.0.2-8451-6

cpe:2.3:o:synology:diskstation_manager:6.0.2-8451-6
Synology » Diskstation Manager » Version: 6.0.2-8451-7

cpe:2.3:o:synology:diskstation_manager:6.0.2-8451-7
Synology » Diskstation Manager » Version: 6.0.2-8451-8

cpe:2.3:o:synology:diskstation_manager:6.0.2-8451-8
Synology » Diskstation Manager » Version: 6.0.2-8451-9

cpe:2.3:o:synology:diskstation_manager:6.0.2-8451-9
Synology » Diskstation Manager » Version: 6.0.3-8754

cpe:2.3:o:synology:diskstation_manager:6.0.3-8754
Synology » Diskstation Manager » Version: 6.0.3-8754-1

cpe:2.3:o:synology:diskstation_manager:6.0.3-8754-1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15894

Products

Pricing

Contact Us