Lucene search
SynologyCVE-2022-27614HistoryJul 28, 2022 - 7:15 a.m.
CVE-2022-27614
2022-07-2807:15:08
CWE-200
synology
web.nvd.nist.gov
78
5
synology media server
vulnerability
cve-2022-27614
web server
information security
nvd
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.2
Confidence
High
EPSS
0.001
Percentile
46.5%
Exposure of sensitive information to an unauthorized actor vulnerability in web server in Synology Media Server before 1.8.1-2876 allows remote attackers to obtain sensitive information via unspecified vectors.
Affected configurations
Node
synologymedia_serverRange<1.8.1-2876
synologydiskstation_managerMatch6.2
Node
synologymedia_serverRange<1.4-2665
synologyrouter_managerMatch1.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| synology | media_server | * | cpe:2.3:a:synology:media_server:*:*:*:*:*:*:*:* |
| synology | diskstation_manager | 6.2 | cpe:2.3:a:synology:diskstation_manager:6.2:*:*:*:*:*:*:* |
| synology | router_manager | 1.2 | cpe:2.3:a:synology:router_manager:1.2:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Media Server",
"vendor": "Synology",
"versions": [
{
"lessThan": "1.8.1-2876",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Social References
More
Related
nvd
nvd
CVE-2022-27614
2022-07-28 07:15:08
cnvd
cnvd
Synology Media Server Information Disclosure Vulnerability
2022-07-30 00:00:00
prion
prion
Information disclosure
2022-07-28 07:15:00
cvelist
cvelist
CVE-2022-27614
2022-07-28 06:55:12
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.2
Confidence
High
EPSS
0.001
Percentile
46.5%
Related for CVE-2022-27614