Improper limitation of a pathname to a restricted directory (‘Path Traversal’) vulnerability in support service management in Synology DiskStation Manager (DSM) before 7.0.1-42218-2 allows remote authenticated users to write arbitrary files via unspecified vectors.
CPE | Name | Operator | Version |
---|---|---|---|
diskstation_manager | ge | 6.2 | |
diskstation_manager | lt | 6.2.4 | |
diskstation_manager | ge | 7.0 | |
diskstation_manager | lt | 7.0.1 |