Medium severity6.5NVD Advisory· Published Aug 24, 2017· Updated Jun 17, 2026
CVE-2017-12074
CVE-2017-12074
Description
Directory traversal vulnerability in the SYNO.DNSServer.Zone.MasterZoneConf in Synology DNS Server before 2.2.1-3042 allows remote authenticated attackers to write arbitrary files via the domain_name parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:synology:dns_server:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:synology:dns_server:*:*:*:*:*:*:*:*range: <=2.2.0-3032
- (no CPE)range: <2.2.1-3042
- (no CPE)range: before 2.2.1-3042
Patches
Vulnerability mechanics
References
1- www.synology.com/en-global/support/security/Synology_SA_17_46_DNS_ServernvdVendor Advisory
News mentions
0No linked articles in our index yet.