Lucene search
SynologyCVELIST:CVE-2024-39348HistoryJun 28, 2024 - 6:30 a.m.
CVE-2024-39348
2024-06-2806:30:57
CWE-494
synology
www.cve.org
3
cve-2024-39348
airprint functionality
synology router manager
man-in-the-middle
arbitrary code
integrity check.
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Download of code without integrity check vulnerability in AirPrint functionality in Synology Router Manager (SRM) before 1.2.5-8227-11 and 1.3.1-9346-8 allows man-in-the-middle attackers to execute arbitrary code via unspecified vectors.
CNA Affected
[
{
"vendor": "Synology",
"product": "Synology Router Manager (SRM)",
"versions": [
{
"version": "1.3",
"status": "affected",
"lessThan": "1.3.1-9346-8",
"versionType": "semver"
},
{
"version": "1.2",
"status": "affected",
"lessThan": "1.2.5-8227-11",
"versionType": "semver"
},
{
"version": "0",
"status": "unknown",
"lessThan": "1.2",
"versionType": "semver"
}
],
"defaultStatus": "affected"
}
]Related
nvd
nvd
CVE-2024-39348
2024-06-28 07:15:06
vulnrichment
vulnrichment
CVE-2024-39348
2024-06-28 06:30:57
cve
cve
CVE-2024-39348
2024-06-28 07:15:06
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Related for CVELIST:CVE-2024-39348