Synology Router Manager vulnerabilities
59 known vulnerabilities affecting synology/router_manager.
Total CVEs
59
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
CRITICAL7HIGH21MEDIUM30LOW1
Vulnerabilities
Page 2 of 3
CVE-2023-2729P3HIGHCVSS 7.5≥ 1.2, < 1.3.1-9346v1.3.1-93462023-06-13
CVE-2023-2729 [HIGH] CVE-2023-2729: Use of insufficiently random values vulnerability in User Management Functionality in Synology DiskS
Use of insufficiently random values vulnerability in User Management Functionality in Synology DiskStation Manager (DSM) before 7.2-64561 allows remote attackers to obtain user credential via unspecified vectors.
nvd
CVE-2018-7185P3HIGHCVSS 7.5≥ 1.1, < 1.1.6-6931-32018-03-06
CVE-2018-7185 [HIGH] CVE-2018-7185: The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of serv
The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association causing the victim ntpd to reset its association.
nvd
CVE-2018-7184P3HIGHCVSS 7.5v1.12018-03-06
CVE-2018-7184 [HIGH] CVE-2018-7184: ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, whic
ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the most recent timestamp. This issue is a result of an incomplete fix
nvd
CVE-2023-41741P3HIGHCVSS 7.5fixed in 1.3.1-9346-62023-08-31
CVE-2023-41741 [HIGH] CVE-2023-41741: Exposure of sensitive information to an unauthorized actor vulnerability in cgi component in Synolog
Exposure of sensitive information to an unauthorized actor vulnerability in cgi component in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote attackers to obtain sensitive information via unspecified vectors.
nvd
CVE-2024-39348P3HIGHCVSS 7.5≥ 1.2, < 1.2.5-8227≥ 1.3, < 1.3.1-9346+2 more2024-06-28
CVE-2024-39348 [HIGH] CWE-494 CVE-2024-39348: Download of code without integrity check vulnerability in AirPrint functionality in Synology Router
Download of code without integrity check vulnerability in AirPrint functionality in Synology Router Manager (SRM) before 1.2.5-8227-11 and 1.3.1-9346-8 allows man-in-the-middle attackers to execute arbitrary code via unspecified vectors.
nvd
CVE-2020-27649P3CRITICALCVSS 9.0≥ 1.2, < 1.2.4-80812020-10-29
CVE-2020-27649 [CRITICAL] CWE-295 CVE-2020-27649: Improper certificate validation vulnerability in OpenVPN client in Synology Router Manager (SRM) bef
Improper certificate validation vulnerability in OpenVPN client in Synology Router Manager (SRM) before 1.2.4-8081 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
nvd
CVE-2020-27651P3HIGHCVSS 8.1≥ 1.2, < 1.2.4-80812020-10-29
CVE-2020-27651 [HIGH] CWE-614 CVE-2020-27651: Synology Router Manager (SRM) before 1.2.4-8081 does not set the Secure flag for the session cookie
Synology Router Manager (SRM) before 1.2.4-8081 does not set the Secure flag for the session cookie in an HTTPS session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an HTTP session.
nvd
CVE-2017-15895P3MEDIUMCVSS 6.5fixed in 1.1.5-6542-42017-12-08
CVE-2017-15895 [MEDIUM] CWE-22 CVE-2017-15895: Directory traversal vulnerability in the SYNO.FileStation.Extract in Synology Router Manager (SRM) b
Directory traversal vulnerability in the SYNO.FileStation.Extract in Synology Router Manager (SRM) before 1.1.5-6542-4 allows remote authenticated users to write arbitrary files via the dest_folder_path parameter.
nvd
CVE-2019-14907P3MEDIUMCVSS 6.5v1.22020-01-21
CVE-2019-14907 [MEDIUM] CWE-125 CVE-2019-14907: All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue
All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where if it is set with "log level = 3" (or above) then the string obtained from the client, after a failed character conversion, is printed. Such strings can be provided during the NTLMSSP authentication exchange. In the Samba AD DC in particular, t
nvd
CVE-2020-27653P3HIGHCVSS 8.3≥ 1.2, < 1.2.4-80812020-10-29
CVE-2020-27653 [HIGH] CWE-327 CVE-2020-27653: Algorithm downgrade vulnerability in QuickConnect in Synology Router Manager (SRM) before 1.2.4-8081
Algorithm downgrade vulnerability in QuickConnect in Synology Router Manager (SRM) before 1.2.4-8081 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via unspecified vectors.
nvd
CVE-2019-11823P3HIGHCVSS 7.5fixed in 1.2.3-8017-22020-05-04
CVE-2019-11823 [HIGH] CWE-125 CVE-2019-11823: CRLF injection vulnerability in Network Center in Synology Router Manager (SRM) before 1.2.3-8017-2
CRLF injection vulnerability in Network Center in Synology Router Manager (SRM) before 1.2.3-8017-2 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted network traffic.
nvd
CVE-2019-19344P3MEDIUMCVSS 6.5v1.22020-01-21
CVE-2019-19344 [MEDIUM] CWE-416 CVE-2019-19344: There is a use-after-free issue in all samba 4.9.x versions before 4.9.18, all samba 4.10.x versions
There is a use-after-free issue in all samba 4.9.x versions before 4.9.18, all samba 4.10.x versions before 4.10.12 and all samba 4.11.x versions before 4.11.5, essentially due to a call to realloc() while other local variables still point at the original buffer.
nvd
CVE-2019-9494P3MEDIUMCVSS 5.9fixed in 1.2.3-80872019-04-17
CVE-2019-9494 [MEDIUM] CWE-208 CVE-2019-9494: The implementations of SAE in hostapd and wpa_supplicant are vulnerable to side channel attacks as a
The implementations of SAE in hostapd and wpa_supplicant are vulnerable to side channel attacks as a result of observable timing differences and cache access patterns. An attacker may be able to gain leaked information from a side channel attack that can be used for full password recovery. Both hostapd with SAE support and wpa_supplicant with SAE supp
nvd
CVE-2025-29843P4MEDIUMCVSS 5.4≥ 1.3, < 1.3.1-9346v1.3.1-93462025-12-04
CVE-2025-29843 [MEDIUM] CWE-22 CVE-2025-29843: A vulnerability in FileStation thumb cgi allows remote authenticated users to read/write image files
A vulnerability in FileStation thumb cgi allows remote authenticated users to read/write image files.
nvd
CVE-2018-13287P4MEDIUMCVSS 6.5fixed in 1.1.7-6941-12019-04-01
CVE-2018-13287 [MEDIUM] CWE-276 CVE-2018-13287: Incorrect default permissions vulnerability in synouser.conf in Synology Router Manager (SRM) before
Incorrect default permissions vulnerability in synouser.conf in Synology Router Manager (SRM) before 1.1.7-6941-1 allows remote authenticated users to obtain sensitive information via the world readable configuration.
nvd
CVE-2024-39347P4MEDIUMCVSS 5.9≥ 1.2, < 1.2.5-8227≥ 1.3, < 1.3.1-9346+2 more2024-06-28
CVE-2024-39347 [MEDIUM] CWE-276 CVE-2024-39347: Incorrect default permissions vulnerability in firewall functionality in Synology Router Manager (SR
Incorrect default permissions vulnerability in firewall functionality in Synology Router Manager (SRM) before 1.2.5-8227-11 and 1.3.1-9346-8 allows man-in-the-middle attackers to access highly sensitive intranet resources via unspecified vectors.
nvd
CVE-2023-41740P4MEDIUMCVSS 5.3fixed in 1.3.1-9346-62023-08-31
CVE-2023-41740 [MEDIUM] CVE-2023-41740: Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in cgi
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in cgi component in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote attackers to read specific files via unspecified vectors.
nvd
CVE-2023-41739P4MEDIUMCVSS 6.5fixed in 1.3.1-9346-62023-08-31
CVE-2023-41739 [MEDIUM] CVE-2023-41739: Uncontrolled resource consumption vulnerability in File Functionality in Synology Router Manager (SR
Uncontrolled resource consumption vulnerability in File Functionality in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote authenticated users to conduct denial-of-service attacks via unspecified vectors.
nvd
CVE-2018-7170P4MEDIUMCVSS 5.3≥ 1.1, < 1.1.6-6931-32018-03-06
CVE-2018-7170 [MEDIUM] CVE-2018-7170: ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the pr
ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clock via a Sybil attack. This issue exists because of an incomplete fix for CVE-2016-1549.
nvd
CVE-2020-27657P4MEDIUMCVSS 5.9≥ 1.2, < 1.2.4-80812020-10-29
CVE-2020-27657 [MEDIUM] CWE-319 CVE-2020-27657: Cleartext transmission of sensitive information vulnerability in DDNS in Synology Router Manager (SR
Cleartext transmission of sensitive information vulnerability in DDNS in Synology Router Manager (SRM) before 1.2.4-8081 allows man-in-the-middle attackers to eavesdrop authentication information of DNSExit via unspecified vectors.
nvd