Lucene search

K

CVE-2017-15894

🗓️ 08 Dec 2017 16:00:29Reported by synologyType 
cve
 cve
🔗 web.nvd.nist.gov👁 41 Views

Directory traversal vuln. in SYNO.FileStation.Extract in Synology DSM 6.0.x before 6.0.3-8754-3 & before 5.2-5967-6 allows remote authenticated users to write arbitrary files via dest_folder_path parameter

Show more
Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Cvelist
CVE-2017-15894
8 Dec 201716:00
cvelist
Tenable Nessus
Synology (CVE-2017-15894)
1 Oct 202400:00
nessus
Prion
Directory traversal
8 Dec 201716:29
prion
NVD
CVE-2017-15894
8 Dec 201716:29
nvd
Nvd
Node
synologydiskstation_managerRange5.25.2-5967-6
OR
synologydiskstation_managerRange6.06.0.3-8754-3
[
  {
    "product": "Synology DiskStation Manager (DSM)",
    "vendor": "Synology",
    "versions": [
      {
        "status": "affected",
        "version": "6.0.x before 6.0.3-8754-3"
      },
      {
        "status": "affected",
        "version": "before 5.2-5967-6"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
08 Dec 2017 16:29Current
6.2Medium risk
Vulners AI Score6.2
CVSS24
CVSS36.5
EPSS0.001
41
.json
Report