Synology

Router Manager

59 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.9

CVE-2024-53282

  • EPSS 0.15%
  • Veröffentlicht 09.12.2024 04:15:04
  • Zuletzt bearbeitet 04.08.2025 19:08:05

Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in WiFi Connect MAC Filter functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator pri...

5.9

CVE-2024-53281

  • EPSS 0.15%
  • Veröffentlicht 09.12.2024 04:15:04
  • Zuletzt bearbeitet 04.08.2025 19:08:08

Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in Network WOL functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users to read or write specific files co...

5.9

CVE-2024-53280

  • EPSS 0.15%
  • Veröffentlicht 09.12.2024 04:15:04
  • Zuletzt bearbeitet 04.08.2025 19:08:11

Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in network center policy route functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator...

5.9

CVE-2024-53279

  • EPSS 0.15%
  • Veröffentlicht 09.12.2024 04:15:04
  • Zuletzt bearbeitet 04.08.2025 19:08:17

Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in file station functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to ...

8.1

CVE-2024-11398

  • EPSS 1.09%
  • Veröffentlicht 04.12.2024 07:15:05
  • Zuletzt bearbeitet 29.07.2025 19:42:50

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in OTP reset functionality in Synology Router Manager (SRM) before 1.3.1-9346-9 allows remote authenticated users to delete arbitrary files via unspecified v...

7.5

CVE-2024-39348

  • EPSS 0.64%
  • Veröffentlicht 28.06.2024 07:15:06
  • Zuletzt bearbeitet 07.08.2025 13:47:25

Download of code without integrity check vulnerability in AirPrint functionality in Synology Router Manager (SRM) before 1.2.5-8227-11 and 1.3.1-9346-8 allows man-in-the-middle attackers to execute arbitrary code via unspecified vectors.

5.9

CVE-2024-39347

  • EPSS 0.39%
  • Veröffentlicht 28.06.2024 07:15:05
  • Zuletzt bearbeitet 07.08.2025 13:46:42

Incorrect default permissions vulnerability in firewall functionality in Synology Router Manager (SRM) before 1.2.5-8227-11 and 1.3.1-9346-8 allows man-in-the-middle attackers to access highly sensitive intranet resources via unspecified vectors.

7.5

CVE-2023-41741

  • EPSS 0.25%
  • Veröffentlicht 31.08.2023 10:15:08
  • Zuletzt bearbeitet 21.11.2024 08:21:36

Exposure of sensitive information to an unauthorized actor vulnerability in cgi component in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote attackers to obtain sensitive information via unspecified vectors.

5.3

CVE-2023-41740

  • EPSS 0.24%
  • Veröffentlicht 31.08.2023 10:15:08
  • Zuletzt bearbeitet 21.11.2024 08:21:35

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in cgi component in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote attackers to read specific files via unspecified vectors.

6.5

CVE-2023-41739

  • EPSS 0.48%
  • Veröffentlicht 31.08.2023 10:15:08
  • Zuletzt bearbeitet 21.11.2024 08:21:35

Uncontrolled resource consumption vulnerability in File Functionality in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote authenticated users to conduct denial-of-service attacks via unspecified vectors.