VYPR

Synology Router Manager (SRM)

by Synology

CVEs (44)

  • CVE-2018-13289Apr 1, 2019
    Synology
    Synology Router Manager (SRM)
    risk 0.00cvss epss 0.00

    Information exposure vulnerability in SYNO.FolderSharing.List in Synology Router Manager (SRM) before 1.1.7-6941-2 allows remote attackers to obtain sensitive information via the (1) folder_path or (2) real_path parameter.

  • CVE-2018-13287Apr 1, 2019
    Synology
    Synology Router Manager (SRM)
    risk 0.00cvss epss 0.00

    Incorrect default permissions vulnerability in synouser.conf in Synology Router Manager (SRM) before 1.1.7-6941-1 allows remote authenticated users to obtain sensitive information via the world readable configuration.

  • CVE-2018-13285Apr 1, 2019
    Synology
    Synology Router Manager (SRM)
    risk 0.00cvss epss 0.01

    Command injection vulnerability in ftpd in Synology Router Manager (SRM) before 1.1.7-6941-1 allows remote authenticated users to execute arbitrary OS commands via the (1) MKD or (2) RMD command.

  • CVE-2018-8918Dec 24, 2018
    Synology
    Synology Router Manager (SRM)
    risk 0.00cvss epss 0.00

    Cross-site scripting (XSS) vulnerability in info.cgi in Synology Router Manager (SRM) before 1.1.7-6941 allows remote attackers to inject arbitrary web script or HTML via the host parameter.

Page 3 of 3