Lucene search
K

Synology DiskStation Manager Out-of-bounds Read (CVE-2022-3576)

๐Ÿ—“๏ธย 01 Oct 2024ย 00:00:00Reported byย TenableTypeย 
nessus
ย nessus
๐Ÿ”—ย www.tenable.com๐Ÿ‘ย 42ย Views

Synology DiskStation Manager OOB Read vulnerability foun

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2022-3576
5 May 202520:20
โ€“circl
CNNVD
Synology DiskStation Manager ็ผ“ๅ†ฒๅŒบ้”™่ฏฏๆผๆดž
20 Oct 202200:00
โ€“cnnvd
CVE
CVE-2022-3576
20 Oct 202205:50
โ€“cve
Cvelist
CVE-2022-3576
20 Oct 202205:50
โ€“cvelist
EUVD
EUVD-2022-42940
3 Oct 202520:07
โ€“euvd
NVD
CVE-2022-3576
20 Oct 202206:15
โ€“nvd
OpenVAS
Synology DiskStation Manager (DSM) < 7.1.1-42962-2 Multiple Vulnerabilities (Synology-SA-22:17) - Remote Known Vulnerable Versions Check
14 Nov 202200:00
โ€“openvas
OpenVAS
Synology DiskStation Manager (DSM) < 7.1.1-42962-2 Multiple Vulnerabilities (Synology-SA-22:17) - Unreliable Remote Version Check
14 Nov 202200:00
โ€“openvas
OSV
CVE-2022-3576
20 Oct 202206:15
โ€“osv
Prion
Design/Logic Flaw
20 Oct 202206:15
โ€“prion
Rows per page
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(502393);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/10/02");

  script_cve_id("CVE-2022-3576");

  script_name(english:"Synology DiskStation Manager Out-of-bounds Read (CVE-2022-3576)");

  script_set_attribute(attribute:"synopsis", value:
"The remote OT asset is affected by a vulnerability.");
  script_set_attribute(attribute:"description", value:
"A vulnerability regarding out-of-bounds read is found in the session
processing functionality of Out-of-Band (OOB) Management. This allows
remote attackers to obtain sensitive information via unspecified
vectors. The following models with Synology DiskStation Manager (DSM)
versions before 7.1.1-42962-2 may be affected: DS3622xs+, FS3410, and
HD6500.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.");
  script_set_attribute(attribute:"see_also", value:"https://www.synology.com/security/advisory/Synology_SA_22_17");
  script_set_attribute(attribute:"solution", value:
"Refer to the vendor advisory.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-3576");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(125);

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/10/20");
  script_set_attribute(attribute:"patch_publication_date", value:"2022/10/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/10/01");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:synology:diskstation_manager_ds3622xs%2b");
  script_set_attribute(attribute:"generated_plugin", value:"former");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Tenable.ot");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("tenable_ot_api_integration.nasl");
  script_require_keys("Tenable.ot/Synology");

  exit(0);
}


include('tenable_ot_cve_funcs.inc');

get_kb_item_or_exit('Tenable.ot/Synology');

var asset = tenable_ot::assets::get(vendor:'Synology');

var vuln_cpes = {
    "cpe:/a:synology:diskstation_manager_ds3622xs%2b" :
        {"versionEndExcluding" : "7.1.1-42962-2", "family" : "DiskStation"}
};

tenable_ot::cve::compare_and_report(asset:asset, cpes:vuln_cpes, severity:SECURITY_HOLE);

Data

Build on a solid foundation withย Vulners data

Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data

Api

Power your application withย Vulners API

The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access

App

Assess and manage vulnerabilities withย Vulnersย tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation