Lucene search

PRIOn knowledge basePRION:CVE-2024-0854

HistoryJan 24, 2024 - 10:15 a.m.

Open redirect

2024-01-2410:15:00

PRIOn knowledge base

www.prio-n.com

url redirection

untrusted site

file access

phishing attacks

remote authentication

synology diskstation manager

nvd

6.6 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.3%

JSON

URL redirection to untrusted site (‘Open Redirect’) vulnerability in file access component in Synology DiskStation Manager (DSM) before 7.2.1-69057-2 allows remote authenticated users to conduct phishing attacks via unspecified vectors.

CPENameOperatorVersion
diskstation_managereq< 7.2.1690572

CPE	Name	Operator	Version
	diskstation_manager	eq	< 7.2.1690572

References

www.synology.com/en-global/security/advisory/Synology_SA_24_02