Vulnerability Details CVE-2025-14713
An Exposed Dangerous Method or Function vulnerability in Synology C2 Identity Edge Server package in DSM before 1.76.0-0307 allows remote attackers to obtain user credentials from the edge server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.7%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2025-14713
-
cpe:2.3:a:synology:c2_identity_edge_server:1.0.0-0018
-
cpe:2.3:a:synology:c2_identity_edge_server:1.0.0-0019
-
cpe:2.3:a:synology:c2_identity_edge_server:1.0.0-0020
-
cpe:2.3:a:synology:c2_identity_edge_server:1.0.0-0021
-
cpe:2.3:a:synology:c2_identity_edge_server:1.0.0-0023
-
cpe:2.3:a:synology:c2_identity_edge_server:1.0.0-0040
-
cpe:2.3:a:synology:c2_identity_edge_server:1.0.0-0061
-
cpe:2.3:a:synology:c2_identity_edge_server:1.0.0-0100
-
cpe:2.3:a:synology:c2_identity_edge_server:1.0.0-0120
-
cpe:2.3:a:synology:c2_identity_edge_server:1.0.0-0121
-
cpe:2.3:a:synology:c2_identity_edge_server:1.0.0-0161
-
cpe:2.3:a:synology:c2_identity_edge_server:1.0.0-0180
-
cpe:2.3:a:synology:c2_identity_edge_server:1.37.0-0181
-
cpe:2.3:a:synology:c2_identity_edge_server:1.38.0-0182
-
cpe:2.3:a:synology:c2_identity_edge_server:1.43.0-0183
-
cpe:2.3:a:synology:c2_identity_edge_server:1.45.1-0185
-
cpe:2.3:a:synology:c2_identity_edge_server:1.52.0-0186
-
cpe:2.3:a:synology:c2_identity_edge_server:1.55.1-0187
-
cpe:2.3:a:synology:c2_identity_edge_server:1.56.3-0204
-
cpe:2.3:a:synology:c2_identity_edge_server:1.58.0-0240
-
cpe:2.3:a:synology:c2_identity_edge_server:1.64.1-0261
-
cpe:2.3:a:synology:c2_identity_edge_server:1.76.0-0290
-
cpe:2.3:a:synology:c2_identity_edge_server:1.76.0-0302
-
cpe:2.3:o:synology:diskstation_manager:7.1
-
cpe:2.3:o:synology:diskstation_manager:7.2.1
-
cpe:2.3:o:synology:diskstation_manager:7.2.2
-
cpe:2.3:o:synology:diskstation_manager:7.3