VYPR
Unrated severityNVD Advisory· Published Aug 3, 2022· Updated Sep 16, 2024

CVE-2022-27617

CVE-2022-27617

Description

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology Calendar before 2.3.4-0631 allows remote authenticated users to download arbitrary files via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: <2.3.4-0631
  • Synology/Synology Calendarv5
    Range: unspecified

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.