Medium severity5.3NVD Advisory· Published Jul 24, 2017· Updated Jun 17, 2026
CVE-2017-9554
CVE-2017-9554
Description
An information exposure vulnerability in forget_passwd.cgi in Synology DiskStation Manager (DSM) before 6.1.3-15152 allows remote attackers to enumerate valid usernames via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:o:synology:diskstation_manager:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:synology:diskstation_manager:*:*:*:*:*:*:*:*range: <=6.1.1-15101-4
- (no CPE)range: <6.1.3-15152
Patches
Vulnerability mechanics
References
2- www.synology.com/en-global/support/security/Synology_SA_17_29_DSMnvdMitigationVendor Advisory
- www.exploit-db.com/exploits/43455/nvd
News mentions
0No linked articles in our index yet.