CVE-2023-41739Uncontrolled Resource Consumption in Synology Router Manager

CWE-400Uncontrolled Resource Consumption3 documents3 sources
Severity
6.5MEDIUMNVD
CNA4.9
EPSS
0.5%
top 35.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Synology Router ManagerSynology Router Manager
Timeline
PublishedAug 31

Description

Uncontrolled resource consumption vulnerability in File Functionality in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote authenticated users to conduct denial-of-service attacks via unspecified vectors.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

NVDsynology/router_manager< 1.3.1-9346-6
CVEListV5synology/synology_router_manager1.31.3.1-9346-6

Patches

Patch: www.synology.comPatch: www.synology.com

🔴Vulnerability Details

2
CVEList
CVE-2023-41739: Uncontrolled resource consumption vulnerability in File Functionality in Synology Router Manager (SRM) before 12023-08-31
GHSA
GHSA-89p4-79q6-8w43: Uncontrolled resource consumption vulnerability in File Functionality in Synology Router Manager (SRM) before 12023-08-31
CVE-2023-41739 — Uncontrolled Resource Consumption | cvebase