Unrated severityNVD Advisory· Published Dec 4, 2024· Updated Dec 4, 2024
CVE-2024-11398
CVE-2024-11398
Description
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in OTP reset functionality in Synology Router Manager (SRM) before 1.3.1-9346-9 allows remote authenticated users to delete arbitrary files via unspecified vectors.
Affected products
2- Range: < 1.3.1-9346-9
- Range: 1.3
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.synology.com/en-global/security/advisory/Synology_SA_24_03mitrevendor-advisory
News mentions
0No linked articles in our index yet.