CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Synology: >> Cloud Station Backup Security Vulnerabilities

CVE-2017-11157

Multiple untrusted search path vulnerabilities in the installer in Synology Cloud Station Backup before 4.2.5-4396 on Windows allow local attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) shfolder.dll, (2) ntmarta.dll, (3) secur32.dll or (4) dwmapi.dll file in the current working directory.

CVSS Score

7.8

EPSS Score

0.001

Published

2017-08-30

Page 1

Vulnerabilities

Vulnerable Software

Synology: >> Cloud Station Backup Security Vulnerabilities

Products

Pricing

Contact Us