Synology Diskstation Manager vulnerabilities
96 known vulnerabilities affecting synology/diskstation_manager.
Total CVEs
96
CISA KEV
1
actively exploited
Public exploits
10
Exploited in wild
2
Severity breakdown
CRITICAL18HIGH47MEDIUM29LOW2
Vulnerabilities
Page 4 of 5
CVE-2019-9511HIGHCVSS 7.5v6.22019-08-13
CVE-2019-9511 [HIGH] CWE-400 CVE-2019-9511: Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization man
Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. De
nvd
CVE-2019-9513HIGHCVSS 7.5v6.22019-08-13
CVE-2019-9513 [HIGH] CWE-400 CVE-2019-9513: Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of ser
Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.
nvd
CVE-2019-9518HIGHCVSS 7.5v6.22019-08-13
CVE-2019-9518 [HIGH] CWE-400 CVE-2019-9518: Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a deni
Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a denial of service. The attacker sends a stream of frames with an empty payload and without the end-of-stream flag. These frames can be DATA, HEADERS, CONTINUATION and/or PUSH_PROMISE. The peer spends time processing each frame disproportionate to attack bandw
nvd
CVE-2019-9516MEDIUMCVSS 6.5v6.22019-08-13
CVE-2019-9516 [MEDIUM] CWE-400 CVE-2019-9516: Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of serv
Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the
nvd
CVE-2019-3870MEDIUMCVSS 6.1v5.2v6.1+1 more2019-04-09
CVE-2019-3870 [MEDIUM] CWE-276 CVE-2019-3870: A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10.2.
A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10.2. During the creation of a new Samba AD DC, files are created in a private subdirectory of the install location. This directory is typically mode 0700, that is owner (root) only access. However in some upgraded installations it will have other permission
nvd
CVE-2018-13284HIGHCVSS 8.8≥ 5.2, < 5.2-5967-8≥ 6.0, < 6.0.3-8754-8+3 more2019-04-01
CVE-2018-13284 [HIGH] CWE-78 CVE-2018-13284: Command injection vulnerability in ftpd in Synology Diskstation Manager (DSM) before 6.2-23739-1 all
Command injection vulnerability in ftpd in Synology Diskstation Manager (DSM) before 6.2-23739-1 allows remote authenticated users to execute arbitrary OS commands via the (1) MKD or (2) RMD command.
cvelistv5nvd
CVE-2018-13293MEDIUMCVSS 5.4≥ 5.2, < 6.2.1-23824≥ unspecified, < 6.2.1-238242019-04-01
CVE-2018-13293 [MEDIUM] CWE-79 CVE-2018-13293: Cross-site scripting (XSS) vulnerability in Control Panel SSO Settings in Synology DiskStation Manag
Cross-site scripting (XSS) vulnerability in Control Panel SSO Settings in Synology DiskStation Manager (DSM) before 6.2.1-23824 allows remote authenticated users to inject arbitrary web script or HTML via the URL parameter.
cvelistv5nvd
CVE-2018-13286MEDIUMCVSS 6.5≥ 5.2, < 5.2-5967-8≥ 6.0, < 6.0.3-8754-8+3 more2019-04-01
CVE-2018-13286 [MEDIUM] CWE-276 CVE-2018-13286: Incorrect default permissions vulnerability in synouser.conf in Synology Diskstation Manager (DSM) b
Incorrect default permissions vulnerability in synouser.conf in Synology Diskstation Manager (DSM) before 6.2-23739-1 allows remote authenticated users to obtain sensitive information via the world readable configuration.
cvelistv5nvd
CVE-2017-16774MEDIUMCVSS 5.4≥ 5.2, < 6.1.4-15217-3≥ unspecified, < 6.1.4-15217-32019-04-01
CVE-2017-16774 [MEDIUM] CWE-79 CVE-2017-16774: Cross-site scripting (XSS) vulnerability in SYNO.Core.PersonalNotification.Event in Synology DiskSta
Cross-site scripting (XSS) vulnerability in SYNO.Core.PersonalNotification.Event in Synology DiskStation Manager (DSM) before 6.1.4-15217-3 allows remote authenticated users to inject arbitrary web script or HTML via the package parameter.
cvelistv5nvd
CVE-2018-13291MEDIUMCVSS 4.3≥ 5.2, < 6.2.1-23824≥ unspecified, < 6.2.1-238242019-04-01
CVE-2018-13291 [MEDIUM] CWE-200 CVE-2018-13291: Information exposure vulnerability in /usr/syno/etc/mount.conf in Synology DiskStation Manager (DSM)
Information exposure vulnerability in /usr/syno/etc/mount.conf in Synology DiskStation Manager (DSM) before 6.2.1-23824 allows remote authenticated users to obtain sensitive information via the world readable configuration.
cvelistv5nvd
CVE-2018-8919CRITICALCVSS 9.8fixed in 6.1.6-15266≥ unspecified, < 6.1.6-152662018-12-24
CVE-2018-8919 [CRITICAL] CWE-200 CVE-2018-8919: Information exposure vulnerability in SYNO.Core.Desktop.SessionData in Synology DiskStation Manager
Information exposure vulnerability in SYNO.Core.Desktop.SessionData in Synology DiskStation Manager (DSM) before 6.1.6-15266 allows remote attackers to steal credentials via unspecified vectors.
cvelistv5nvd
CVE-2018-8920HIGHCVSS 7.2fixed in 6.1.6-15266≥ unspecified, < 6.1.6-152662018-12-24
CVE-2018-8920 [HIGH] CWE-116 CVE-2018-8920: Improper neutralization of escape vulnerability in Log Exporter in Synology DiskStation Manager (DSM
Improper neutralization of escape vulnerability in Log Exporter in Synology DiskStation Manager (DSM) before 6.1.6-15266 allows remote attackers to inject arbitrary content to have an unspecified impact by exporting an archive in CSV format.
cvelistv5nvd
CVE-2018-8917MEDIUMCVSS 5.4fixed in 6.1.6-15266≥ unspecified, < 6.1.6-152662018-12-24
CVE-2018-8917 [MEDIUM] CWE-79 CVE-2018-8917: Cross-site scripting (XSS) vulnerability in info.cgi in Synology DiskStation Manager (DSM) before 6.
Cross-site scripting (XSS) vulnerability in info.cgi in Synology DiskStation Manager (DSM) before 6.1.6-15266 allows remote attackers to inject arbitrary web script or HTML via the host parameter.
cvelistv5nvd
CVE-2018-1160CRITICALCVSS 9.8PoC≥ 5.2, < 5.2-5967-9≥ 6.1, < 6.1.7-15284-3+1 more2018-12-20
CVE-2018-1160 [CRITICAL] CWE-787 CVE-2018-1160: Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lac
Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution.
nvd
CVE-2018-13281MEDIUMCVSS 4.3≥ 6.1, < 6.1.7-15284-2≥ 6.2, < 6.2-23739-2+3 more2018-10-31
CVE-2018-13281 [MEDIUM] CWE-200 CVE-2018-13281: Information exposure vulnerability in SYNO.Core.ACL in Synology DiskStation Manager (DSM) before 6.2
Information exposure vulnerability in SYNO.Core.ACL in Synology DiskStation Manager (DSM) before 6.2-23739-2 allows remote authenticated users to determine the existence and obtain the metadata of arbitrary files via the file_path parameter.
cvelistv5nvd
CVE-2018-13280MEDIUMCVSS 5.9fixed in 6.2-23739≥ unspecified, < 6.2-237392018-07-30
CVE-2018-13280 [MEDIUM] CWE-330 CVE-2018-13280: Use of insufficiently random values vulnerability in SYNO.Encryption.GenRandomKey in Synology DiskSt
Use of insufficiently random values vulnerability in SYNO.Encryption.GenRandomKey in Synology DiskStation Manager (DSM) before 6.2-23739 allows man-in-the-middle attackers to compromise non-HTTPS sessions via unspecified vectors.
cvelistv5nvd
CVE-2017-12075HIGHCVSS 7.2fixed in 6.2-23739≥ unspecified, < 6.2-237392018-06-08
CVE-2017-12075 [HIGH] CWE-77 CVE-2017-12075: Command injection vulnerability in EZ-Internet in Synology DiskStation Manager (DSM) before 6.2-2373
Command injection vulnerability in EZ-Internet in Synology DiskStation Manager (DSM) before 6.2-23739 allows remote authenticated users to execute arbitrary command via the username parameter.
cvelistv5nvd
CVE-2018-8916HIGHCVSS 8.8fixed in 6.2-23739≥ unspecified, < 6.2-237392018-06-08
CVE-2018-8916 [HIGH] CWE-620 CVE-2018-8916: Unverified password change vulnerability in Change Password in Synology DiskStation Manager (DSM) be
Unverified password change vulnerability in Change Password in Synology DiskStation Manager (DSM) before 6.2-23739 allows remote authenticated users to reset password without verification.
cvelistv5nvd
CVE-2018-8897HIGHCVSS 7.8PoCv5.2v6.0+1 more2018-05-08
CVE-2018-8897 [HIGH] CWE-362 CVE-2018-8897: A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Software Develop
A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Software Developer's Manual (SDM) was mishandled in the development of some or all operating-system kernels, resulting in unexpected behavior for #DB exceptions that are deferred by MOV SS or POP SS, as demonstrated by (for example) privilege escalation in Windows, macOS
nvd
CVE-2018-7184HIGHCVSS 7.5v5.2v6.0+1 more2018-03-06
CVE-2018-7184 [HIGH] CVE-2018-7184: ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, whic
ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the most recent timestamp. This issue is a result of an incomplete fix
nvd