VYPR
Unrated severityNVD Advisory· Published Aug 10, 2023· Updated Oct 9, 2024

CVE-2023-28129

CVE-2023-28129

Description

DSM 2022.2 SU2 and all prior versions allows a local low privileged account to execute arbitrary OS commands as the DSM software installation user.

Affected products

2
  • Synology/Dsmllm-fuzzy
    Range: <=2022.2 SU2
  • Ivanti/Desktop & Server Management (DSM)v5
    Range: 2022 su2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.