exploitDog

GHSA-mjrv-32hr-4pv5

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

A design flaw in SYNO.API.Encryption in Synology DiskStation Manager (DSM) before 6.1.3-15152 allows remote attackers to bypass the encryption protection mechanism via the crafted version parameter.

A design flaw in SYNO.API.Encryption in Synology DiskStation Manager (DSM) before 6.1.3-15152 allows remote attackers to bypass the encryption protection mechanism via the crafted version parameter.

Ссылки

EPSS

Процентиль: 32%

0.00127

Низкий

7.5 High

CVSS3

CVE ID

Связанные уязвимости

CVE-2017-9553

CVSS3: 7.5

nvd

больше 8 лет назад

A design flaw in SYNO.API.Encryption in Synology DiskStation Manager (DSM) before 6.1.3-15152 allows remote attackers to bypass the encryption protection mechanism via the crafted version parameter.

EPSS

Процентиль: 32%

0.00127

Низкий

7.5 High

CVSS3

CVE ID