CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Synology: >> Diskstation Manager >> 6.2.3_25426 Security Vulnerabilities

CVE-2021-29088

Improper limitation of a pathname to a restricted directory ('Path Traversal') in cgi component in Synology DiskStation Manager (DSM) before 6.2.4-25553 allows local users to execute arbitrary code via unspecified vectors.

CVSS Score

7.8

EPSS Score

0.001

Published

2021-06-01

CVE-2021-26563

Incorrect authorization vulnerability in synoagentregisterd in Synology DiskStation Manager (DSM) before 6.2.4-25553 allows local users to execute arbitrary code via unspecified vectors.

CVSS Score

8.2

EPSS Score

0.001

Published

2021-02-26

CVE-2020-27653

Algorithm downgrade vulnerability in QuickConnect in Synology Router Manager (SRM) before 1.2.4-8081 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via unspecified vectors.

CVSS Score

8.3

EPSS Score

0.004

Published

2020-10-29

Page 3

Vulnerabilities

Vulnerable Software

Synology: >> Diskstation Manager >> 6.2.3_25426 Security Vulnerabilities

Products

Pricing

Contact Us