Vulnerability Details CVE-2023-0142
Uncontrolled search path element vulnerability in Backup Management functionality in Synology DiskStation Manager (DSM) before 6.2.4-25556-8, 7.0.1-42218-7 and 7.1-42661 allows remote authenticated users with administrator privileges to read or write arbitrary files via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.2%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2023-0142
-
cpe:2.3:a:synology:diskstation_manager_unified_controller:3.1
-
cpe:2.3:a:synology:router_manager:1.2
-
cpe:2.3:a:synology:router_manager:1.2-7742
-
cpe:2.3:a:synology:router_manager:1.2-7742-1
-
cpe:2.3:a:synology:router_manager:1.2-7742-2
-
cpe:2.3:a:synology:router_manager:1.2-7742-3
-
cpe:2.3:a:synology:router_manager:1.2-7742-4
-
cpe:2.3:a:synology:router_manager:1.2-7742-5
-
cpe:2.3:a:synology:router_manager:1.2.1-7779
-
cpe:2.3:a:synology:router_manager:1.2.1-7779-1
-
cpe:2.3:a:synology:router_manager:1.2.2-7915
-
cpe:2.3:a:synology:router_manager:1.2.3-8017-2
-
cpe:2.3:a:synology:router_manager:1.2.3-8087
-
cpe:2.3:a:synology:router_manager:1.2.4-8081
-
cpe:2.3:a:synology:router_manager:1.2.5-8227-6
-
cpe:2.3:a:synology:router_manager:1.3
-
cpe:2.3:a:synology:router_manager:1.3.1-9346
-
cpe:2.3:o:synology:diskstation_manager:6.2
-
cpe:2.3:o:synology:diskstation_manager:6.2-23739
-
cpe:2.3:o:synology:diskstation_manager:6.2-23739-1
-
cpe:2.3:o:synology:diskstation_manager:6.2-23739-2
-
cpe:2.3:o:synology:diskstation_manager:6.2.1
-
cpe:2.3:o:synology:diskstation_manager:6.2.1-23824
-
cpe:2.3:o:synology:diskstation_manager:6.2.1-23824-1
-
cpe:2.3:o:synology:diskstation_manager:6.2.1-23824-2
-
cpe:2.3:o:synology:diskstation_manager:6.2.1-23824-3
-
cpe:2.3:o:synology:diskstation_manager:6.2.1-23824-4
-
cpe:2.3:o:synology:diskstation_manager:6.2.1-23824-5
-
cpe:2.3:o:synology:diskstation_manager:6.2.1-23824-6
-
cpe:2.3:o:synology:diskstation_manager:6.2.2-24922
-
cpe:2.3:o:synology:diskstation_manager:6.2.3-25426-2
-
cpe:2.3:o:synology:diskstation_manager:6.2.3-25426-3
-
cpe:2.3:o:synology:diskstation_manager:6.2.3_25426
-
cpe:2.3:o:synology:diskstation_manager:6.2.4-25553
-
cpe:2.3:o:synology:diskstation_manager:6.2.4-25556-2
-
cpe:2.3:o:synology:diskstation_manager:6.2.4-25556-3
-
cpe:2.3:o:synology:diskstation_manager:6.2.4-25556-4
-
cpe:2.3:o:synology:diskstation_manager:6.2.4-25556-5
-
cpe:2.3:o:synology:diskstation_manager:6.2.4-25556-6
-
cpe:2.3:o:synology:diskstation_manager:6.2.4-25556-7
-
cpe:2.3:o:synology:diskstation_manager:6.2.4-25556-8
-
cpe:2.3:o:synology:diskstation_manager:7.0
-
cpe:2.3:o:synology:diskstation_manager:7.0-41890
-
cpe:2.3:o:synology:diskstation_manager:7.0.1-42218
-
cpe:2.3:o:synology:diskstation_manager:7.0.1-42218-1
-
cpe:2.3:o:synology:diskstation_manager:7.0.1-42218-2
-
cpe:2.3:o:synology:diskstation_manager:7.0.1-42218-3
-
cpe:2.3:o:synology:diskstation_manager:7.0.1-42218-4
-
cpe:2.3:o:synology:diskstation_manager:7.0.1-42218-5
-
cpe:2.3:o:synology:diskstation_manager:7.0.1-42218-6
-
cpe:2.3:o:synology:diskstation_manager:7.0.1-42218-7
-
cpe:2.3:o:synology:diskstation_manager:7.1