Synology DiskStation Manager Incorrect Default Permissions (CVE-2018-13286)

Incorrect default permissions vulnerability in synouser.conf in Synology Diskstation Manager DSM before 6.2-23739-1 allows remote authenticated users to obtain sensitive information via the world readable configuration. This plugin only works with Tenable.ot. Please visit...

CVE-2018-13286

Incorrect default permissions vulnerability in synouser.conf in Synology Diskstation Manager DSM before 6.2-23739-1 allows remote authenticated users to obtain sensitive information via the world readable configuration...

CVE-2018-13286

Incorrect default permissions vulnerability in synouser.conf in Synology Diskstation Manager DSM before 6.2-23739-1 allows remote authenticated users to obtain sensitive information via the world readable configuration...

CVE-2018-13286

CVE-2018-13286 affects Synology DiskStation Manager (DSM) prior to 6.2-23739-1. The vulnerability lies in synouser.conf where incorrect default permissions create a world-readable configuration, allowing remote authenticated users to obtain sensitive information. Severity/impact in sources indica...