CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-16766

An improper access control vulnerability in synodsmnotify in Synology DiskStation Manager (DSM) before 6.1.4-15217 and before 6.0.3-8754-6 allows local users to inject arbitrary web script or HTML via the -fn option.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 67.6%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 6.4

References

Products affected by CVE-2017-16766

Synology » Diskstation Manager » Version: 6.0.1-7393

cpe:2.3:a:synology:diskstation_manager:6.0.1-7393
Synology » Diskstation Manager » Version: 6.0.1-7393-1

cpe:2.3:a:synology:diskstation_manager:6.0.1-7393-1
Synology » Diskstation Manager » Version: 6.0.1-7393-2

cpe:2.3:a:synology:diskstation_manager:6.0.1-7393-2
Synology » Diskstation Manager » Version: 6.0.2-8451

cpe:2.3:a:synology:diskstation_manager:6.0.2-8451
Synology » Diskstation Manager » Version: 6.0.2-8451-1

cpe:2.3:a:synology:diskstation_manager:6.0.2-8451-1
Synology » Diskstation Manager » Version: 6.0.2-8451-10

cpe:2.3:a:synology:diskstation_manager:6.0.2-8451-10
Synology » Diskstation Manager » Version: 6.0.2-8451-2

cpe:2.3:a:synology:diskstation_manager:6.0.2-8451-2
Synology » Diskstation Manager » Version: 6.0.2-8451-3

cpe:2.3:a:synology:diskstation_manager:6.0.2-8451-3
Synology » Diskstation Manager » Version: 6.0.2-8451-4

cpe:2.3:a:synology:diskstation_manager:6.0.2-8451-4
Synology » Diskstation Manager » Version: 6.0.2-8451-5

cpe:2.3:a:synology:diskstation_manager:6.0.2-8451-5
Synology » Diskstation Manager » Version: 6.0.2-8451-6

cpe:2.3:a:synology:diskstation_manager:6.0.2-8451-6
Synology » Diskstation Manager » Version: 6.0.2-8451-7

cpe:2.3:a:synology:diskstation_manager:6.0.2-8451-7
Synology » Diskstation Manager » Version: 6.0.2-8451-8

cpe:2.3:a:synology:diskstation_manager:6.0.2-8451-8
Synology » Diskstation Manager » Version: 6.0.2-8451-9

cpe:2.3:a:synology:diskstation_manager:6.0.2-8451-9
Synology » Diskstation Manager » Version: 6.0.3-8754

cpe:2.3:a:synology:diskstation_manager:6.0.3-8754
Synology » Diskstation Manager » Version: 6.0.3-8754-1

cpe:2.3:a:synology:diskstation_manager:6.0.3-8754-1
Synology » Diskstation Manager » Version: 6.0.3-8754-3

cpe:2.3:a:synology:diskstation_manager:6.0.3-8754-3
Synology » Diskstation Manager » Version: 6.0.3-8754-4

cpe:2.3:a:synology:diskstation_manager:6.0.3-8754-4
Synology » Diskstation Manager » Version: 6.1.1

cpe:2.3:o:synology:diskstation_manager:6.1.1
Synology » Diskstation Manager » Version: 6.1.1-15101

cpe:2.3:o:synology:diskstation_manager:6.1.1-15101
Synology » Diskstation Manager » Version: 6.1.1-15101-1

cpe:2.3:o:synology:diskstation_manager:6.1.1-15101-1
Synology » Diskstation Manager » Version: 6.1.1-15101-2

cpe:2.3:o:synology:diskstation_manager:6.1.1-15101-2
Synology » Diskstation Manager » Version: 6.1.1-15101-3

cpe:2.3:o:synology:diskstation_manager:6.1.1-15101-3
Synology » Diskstation Manager » Version: 6.1.1-15101-4

cpe:2.3:o:synology:diskstation_manager:6.1.1-15101-4
Synology » Diskstation Manager » Version: 6.1.2-15132

cpe:2.3:o:synology:diskstation_manager:6.1.2-15132
Synology » Diskstation Manager » Version: 6.1.2-15132-1

cpe:2.3:o:synology:diskstation_manager:6.1.2-15132-1
Synology » Diskstation Manager » Version: 6.1.3-15152

cpe:2.3:o:synology:diskstation_manager:6.1.3-15152
Synology » Diskstation Manager » Version: 6.1.3-15152-1

cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-1
Synology » Diskstation Manager » Version: 6.1.3-15152-3

cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-3
Synology » Diskstation Manager » Version: 6.1.3-15152-4

cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-4
Synology » Diskstation Manager » Version: 6.1.3-15152-5

cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-5
Synology » Diskstation Manager » Version: 6.1.3-15152-6

cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-6
Synology » Diskstation Manager » Version: 6.1.3-15152-7

cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-7
Synology » Diskstation Manager » Version: 6.1.3-15152-8

cpe:2.3:o:synology:diskstation_manager:6.1.3-15152-8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-16766

Products

Pricing

Contact Us