Information disclosure

2019-04-0115:29:00

PRIOn knowledge base

www.prio-n.com

4.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

21.8%

JSON

Information exposure vulnerability in /usr/syno/etc/mount.conf in Synology DiskStation Manager (DSM) before 6.2.1-23824 allows remote authenticated users to obtain sensitive information via the world readable configuration.

CPENameOperatorVersion
diskstation_managerge5.2
diskstation_managerlt6.2.1

CPE	Name	Operator	Version
	diskstation_manager	ge	5.2
	diskstation_manager	lt	6.2.1

References

www.synology.com/security/advisory/Synology_SA_18_51