Vulnerability Details CVE-2021-27648
Externally controlled reference to a resource in another sphere in quarantine functionality in Synology Antivirus Essential before 1.4.8-2801 allows remote authenticated users to obtain privilege via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.101
EPSS Ranking 92.7%
CVSS Severity
CVSS v3 Score 9.0
CVSS v2 Score 6.5
References
Products affected by CVE-2021-27648
-
cpe:2.3:a:synology:antivirus_essential:1.2-2281
-
cpe:2.3:a:synology:antivirus_essential:1.3-2322
-
cpe:2.3:a:synology:antivirus_essential:1.3-2328
-
cpe:2.3:a:synology:antivirus_essential:1.3-2329
-
cpe:2.3:a:synology:antivirus_essential:1.3-2330
-
cpe:2.3:a:synology:antivirus_essential:1.3-2334
-
cpe:2.3:a:synology:antivirus_essential:1.3-2337
-
cpe:2.3:a:synology:antivirus_essential:1.3-2342
-
cpe:2.3:a:synology:antivirus_essential:1.3-2343
-
cpe:2.3:a:synology:antivirus_essential:1.3-2345
-
cpe:2.3:a:synology:antivirus_essential:1.3-2713
-
cpe:2.3:a:synology:antivirus_essential:1.3-2714
-
cpe:2.3:a:synology:antivirus_essential:1.4.0-2716
-
cpe:2.3:a:synology:antivirus_essential:1.4.1-2717
-
cpe:2.3:a:synology:antivirus_essential:1.4.1-2720
-
cpe:2.3:a:synology:antivirus_essential:1.4.1-2738
-
cpe:2.3:a:synology:antivirus_essential:1.4.2-2744
-
cpe:2.3:a:synology:antivirus_essential:1.4.3-2748
-
cpe:2.3:a:synology:antivirus_essential:1.4.4-2750
-
cpe:2.3:a:synology:antivirus_essential:1.4.5-2753
-
cpe:2.3:a:synology:antivirus_essential:1.4.5-2759
-
cpe:2.3:a:synology:antivirus_essential:1.4.6-2780
-
cpe:2.3:a:synology:antivirus_essential:1.4.7-2790
-
cpe:2.3:a:synology:antivirus_essential:1.4.7-2791