2 results (0.042 seconds)

CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0

Use of insufficiently random values vulnerability in User Management Functionality in Synology DiskStation Manager (DSM) before 7.2-64561 allows remote attackers to obtain user credential via unspecified vectors. • https://www.synology.com/en-global/security/advisory/Synology_SA_23_07 https://www.synology.com/en-global/security/advisory/Synology_SA_23_08 •

CVSS: 8.1EPSS: 0%CPEs: 9EXPL: 0

Uncontrolled search path element vulnerability in Backup Management Functionality in Synology DiskStation Manager (DSM) before 7.1-42661 allows remote authenticated users to read or write arbitrary files via unspecified vectors. • https://www.synology.com/en-global/security/advisory/Synology_SA_23_05 https://www.synology.com/en-global/security/advisory/Synology_SA_23_06 •