5 matches found
CVE-2023-41740
Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in cgi component in Synology Router Manager SRM before 1.3.1-9346-6 allows remote attackers to read specific files via unspecified vectors...
CVE-2023-41739
Uncontrolled resource consumption vulnerability in File Functionality in Synology Router Manager SRM before 1.3.1-9346-6 allows remote authenticated users to conduct denial-of-service attacks via unspecified vectors...
CVE-2023-41738
Improper neutralization of special elements used in an OS command 'OS Command Injection' vulnerability in Directory Domain Functionality in Synology Router Manager SRM before 1.3.1-9346-6 allows remote authenticated users to execute arbitrary commands via unspecified vectors...
PT-2023-28081 · Synology · Synology Router Manager
Name of the Vulnerable Software and Affected Versions: Synology Router Manager SRM versions prior to 1.3.1-9346-6 Description: The issue is related to a Path Traversal vulnerability in the cgi component, allowing remote attackers to read specific files via unspecified vectors. Recommendations: Fo...
Synology Router Manager 路径遍历漏洞
Synology Router Manager SRM is a software used to configure and manage Synology routers from Synology, China. A path traversal vulnerability exists in Synology Router Manager versions prior to 1.3 1.3.1-9346-6, which stems from an incorrect restriction on restricted directory pathnames in the cgi...