Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
- EPSS 0.19%
- Veröffentlicht 29.10.2020 09:15:12
- Zuletzt bearbeitet 14.01.2025 19:29:55
Improper certificate validation vulnerability in OpenVPN client in Synology DiskStation Manager (DSM) before 6.2.3-25426-2 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
4.3
CVE-2020-27650
- EPSS 0.1%
- Veröffentlicht 29.10.2020 09:15:12
- Zuletzt bearbeitet 14.01.2025 19:29:55
Synology DiskStation Manager (DSM) before 6.2.3-25426-2 does not set the Secure flag for the session cookie in an HTTPS session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an HTTP session...
6.1
CVE-2019-3870
- EPSS 0.68%
- Veröffentlicht 09.04.2019 16:29:01
- Zuletzt bearbeitet 14.01.2025 19:29:55
A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10.2. During the creation of a new Samba AD DC, files are created in a private subdirectory of the install location. This directory is typically mode 0700,...