CVE-2016-6554

🗓️ 13 Jul 2018 20:00:29Reported by [email protected]Type

Synology NAS servers have non-random default credentials allowing remote network attackers to gain privileged acces

Reporter	Title	Published	Views	Family All 5
CVE	CVE-2016-6554	13 Jul 201820:29	–	cve
Cvelist	CVE-2016-6554 Synology NAS servers DS107, DS116, and DS213, use default credentials	13 Jul 201820:00	–	cvelist
Prion	Default credentials	13 Jul 201820:29	–	prion
Tenable Nessus	Synology Multiple NAS Servers Credentials Management Errors (CVE-2016-6554)	1 Oct 202400:00	–	nessus
CERT	Synology NAS servers contain insecure default credentials	20 Oct 201600:00	–	cert

Nvd

Node

synology ds107_firmwareRange≤3.1-1639

AND

synology ds107Match-

Node

synology ds213_firmwareRange≤5.2-5644-1

AND

synology ds213Match-

Node

synology ds116_firmwareRange≤5.2-5644-1

AND

synology ds116Match-

Source	Link
synology	www.synology.com/en-global/releaseNote/DS213
securityfocus	www.securityfocus.com/bid/93805
kb	www.kb.cert.org/vuls/id/404187

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Jul 2018 20:29Current

9.4High risk

Vulners AI Score9.4

CVSS210

CVSS39.8

EPSS0.00248

CWE-255