VYPR

Drive

by Synology

CVEs (2)

  • CVE-2018-8922MedJun 1, 2018
    risk 0.42cvss 6.5epss 0.01

    Improper access control vulnerability in Synology Drive before 1.0.2-10275 allows remote authenticated users to access non-shared files or folders via unspecified vectors.

  • CVE-2018-8921MedJun 1, 2018
    risk 0.42cvss 6.5epss 0.01

    Cross-site scripting (XSS) vulnerability in File Sharing Notify Toast in Synology Drive before 1.0.2-10275 allows remote authenticated users to inject arbitrary web script or HTML via the malicious file name.