exploitDog

GHSA-93r2-hrhr-f2pp

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Command injection vulnerability in smart.cgi in Synology DiskStation Manager (DSM) before 5.2-5967-5 allows remote authenticated users to execute arbitrary commands via disk field.

Command injection vulnerability in smart.cgi in Synology DiskStation Manager (DSM) before 5.2-5967-5 allows remote authenticated users to execute arbitrary commands via disk field.

Ссылки

EPSS

Процентиль: 98%

0.6238

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2017-15889

CVSS3: 8.8

nvd

около 8 лет назад

Command injection vulnerability in smart.cgi in Synology DiskStation Manager (DSM) before 5.2-5967-5 allows remote authenticated users to execute arbitrary commands via disk field.

EPSS

Процентиль: 98%

0.6238

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-77