Описание
Missing authentication for critical function vulnerability in logout functionality in Synology Active Backup for Business Agent before 2.6.3-3101 allows local users to logout the client via unspecified vectors. The backup functionality will continue to operate and will not be affected by the logout.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.6.0-3101 (исключая)
cpe:2.3:a:synology:active_backup_for_business_agent:*:*:*:*:*:*:*:*
EPSS
Процентиль: 36%
0.00152
Низкий
4 Medium
CVSS3
3.3 Low
CVSS3
Дефекты
CWE-306
Связанные уязвимости
CVSS3: 4
github
больше 1 года назад
Missing authentication for critical function vulnerability in logout functionality in Synology Active Backup for Business Agent before 2.6.3-3101 allows local users to logout the client via unspecified vectors. The backup functionality will continue to operate and will not be affected by the logout.
EPSS
Процентиль: 36%
0.00152
Низкий
4 Medium
CVSS3
3.3 Low
CVSS3
Дефекты
CWE-306