Lucene search
China National Vulnerability DatabaseCNVD-2022-67853HistoryMar 29, 2022 - 12:00 a.m.
Synology DiskStation Manager Command Injection Vulnerability (CNVD-2022-67853)
2022-03-2900:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
synology diskstation manager
command injection
vulnerability
network storage
file service
taiwan
china
authentication
arbitrary commands
EPSS
0.001
Percentile
29.2%
Synology DiskStation Manager (DSM) is an operating system used on network storage servers (NAS) by Synology Inc. of Taiwan, China. A command injection vulnerability exists in Synology DiskStation Manager (DSM), which stems from a failure to properly filter constructed command special characters, commands, etc. in the File service function. An authenticated attacker can use this vulnerability to execute arbitrary commands via unspecified vectors.
Related
nvd
nvd
CVE-2022-22688
2022-03-25 07:15:07
cvelist
cvelist
CVE-2022-22688
2022-03-25 06:55:11
cve
cve
CVE-2022-22688
2022-03-25 07:15:07
prion
prion
Command injection
2022-03-25 07:15:00