EUVD-2020-20161

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Improper access control vulnerability in Synology Router Manager allows remote command execution.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2020-27654	27 May 202201:29	–	circl
CNVD	Synology Router Manager Access Control Error Vulnerability (CNVD-2020-60456)	30 Oct 202000:00	–	cnvd
CVE	CVE-2020-27654	29 Oct 202008:55	–	cve
Cvelist	CVE-2020-27654	29 Oct 202008:55	–	cvelist
NVD	CVE-2020-27654	29 Oct 202009:15	–	nvd
OpenVAS	Synology Router Manager (SRM) 1.2.x Multiple Vulnerabilities (Synology-SA-20:14)	19 Jun 202300:00	–	openvas
OSV	CVE-2020-27654	29 Oct 202009:15	–	osv
Prion	Improper access control	29 Oct 202009:15	–	prion
Positive Technologies	PT-2020-4934 · Synology · Synology Router Manager	29 Oct 202000:00	–	ptsecurity
Talos Blog	The many vulnerabilities Talos discovered in SOHO and industrial wireless routers post-VPNFilter	2 Aug 202312:00	–	talosblog

[
  {
    "enisaIdVendor": [
      {
        "id": "62384aab-d92b-35fa-b298-180ba6d04ca7",
        "vendor": {
          "name": "Synology"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "31d9268d-3028-32d8-b8f6-ffc26ed371d2",
        "product": {
          "name": "Synology Router Manager (SRM)"
        },
        "product_version": "unspecified <1.2.4-8081"
      }
    ]
  }
]

Source	Link
synology	www.synology.com/security/advisory/Synology_SA_20_14
talosintelligence	www.talosintelligence.com/vulnerability_reports/TALOS-2020-1065
talosintelligence	www.talosintelligence.com/vulnerability_reports/TALOS-2020-1064
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

9.1High risk

Vulners AI Score9.1

CVSS 3.19.8

CVSS 27.5

EPSS0.03047