Synology

Router Manager

55 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2024-11398

  • EPSS 1.09%
  • Published 04.12.2024 07:15:05
  • Last modified 29.07.2025 19:42:50

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in OTP reset functionality in Synology Router Manager (SRM) before 1.3.1-9346-9 allows remote authenticated users to delete arbitrary files via unspecified v...

7.5

CVE-2024-39348

  • EPSS 0.47%
  • Published 28.06.2024 07:15:06
  • Last modified 07.08.2025 13:47:25

Download of code without integrity check vulnerability in AirPrint functionality in Synology Router Manager (SRM) before 1.2.5-8227-11 and 1.3.1-9346-8 allows man-in-the-middle attackers to execute arbitrary code via unspecified vectors.

5.9

CVE-2024-39347

  • EPSS 0.29%
  • Published 28.06.2024 07:15:05
  • Last modified 07.08.2025 13:46:42

Incorrect default permissions vulnerability in firewall functionality in Synology Router Manager (SRM) before 1.2.5-8227-11 and 1.3.1-9346-8 allows man-in-the-middle attackers to access highly sensitive intranet resources via unspecified vectors.

7.5

CVE-2023-41741

  • EPSS 0.25%
  • Published 31.08.2023 10:15:08
  • Last modified 21.11.2024 08:21:36

Exposure of sensitive information to an unauthorized actor vulnerability in cgi component in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote attackers to obtain sensitive information via unspecified vectors.

8.8

CVE-2023-41738

  • EPSS 0.76%
  • Published 31.08.2023 10:15:08
  • Last modified 21.11.2024 08:21:35

Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in Directory Domain Functionality in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote authenticated users to execute arbitrary com...

6.5

CVE-2023-41739

  • EPSS 0.48%
  • Published 31.08.2023 10:15:08
  • Last modified 21.11.2024 08:21:35

Uncontrolled resource consumption vulnerability in File Functionality in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote authenticated users to conduct denial-of-service attacks via unspecified vectors.

5.3

CVE-2023-41740

  • EPSS 0.24%
  • Published 31.08.2023 10:15:08
  • Last modified 21.11.2024 08:21:35

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in cgi component in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote attackers to read specific files via unspecified vectors.

7.5

CVE-2023-2729

  • EPSS 0.28%
  • Published 13.06.2023 08:15:09
  • Last modified 14.01.2025 19:29:55

Use of insufficiently random values vulnerability in User Management Functionality in Synology DiskStation Manager (DSM) before 7.2-64561 allows remote attackers to obtain user credential via unspecified vectors.

8.1

CVE-2023-0142

  • EPSS 0.13%
  • Published 13.06.2023 07:15:46
  • Last modified 14.01.2025 19:29:55

Uncontrolled search path element vulnerability in Backup Management functionality in Synology DiskStation Manager (DSM) before 6.2.4-25556-8, 7.0.1-42218-7 and 7.1-42661 allows remote authenticated users with administrator privileges to read or write...

9.8

CVE-2023-32956

  • EPSS 3.53%
  • Published 16.05.2023 08:15:08
  • Last modified 21.11.2024 08:04:17

Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in CGI component in Synology Router Manager (SRM) before 1.2.5-8227-6 and 1.3.1-9346-3 allows remote attackers to execute arbitrary code via unsp...