Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/01 12:0 a.m.14 views

Synology DiskStation Manager Improper Neutralization of Input During Web Page Generation (CVE-2021-43929)

Improper neutralization of special elements in output used by a downstream component 'Injection' vulnerability in work flow management in Synology DiskStation Manager DSM before 7.0.1-42218-2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. This...

6.5CVSS6AI score0.00597EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/11/18 12:0 a.m.18 views

Synology DiskStation Manager (DSM) 6.2.x < 6.2.4-25556-3, 7.x < 7.0.1-42218-2 Multiple Vulnerabilities (Synology-SA-22:01) - Remote Known Vulnerable Versions Check

Synology DiskStation Manager DSM is prone to a OS command injection vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS7.4AI score0.01157EPSS
Exploits0References1
NVD
NVD
added 2022/02/07 3:15 a.m.14 views

CVE-2021-43929

Improper neutralization of special elements in output used by a downstream component 'Injection' vulnerability in work flow management in Synology DiskStation Manager DSM before 7.0.1-42218-2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

6.5CVSS0.00597EPSS
Exploits0References1
OSV
OSV
added 2022/02/07 3:15 a.m.2 views

CVE-2021-43929

Improper neutralization of special elements in output used by a downstream component 'Injection' vulnerability in work flow management in Synology DiskStation Manager DSM before 7.0.1-42218-2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

5.4CVSS5.9AI score0.00597EPSS
Exploits0References1
CVE
CVE
added 2022/02/07 2:15 a.m.50 views

CVE-2021-43929

Synology DiskStation Manager (DSM) is affected by CVE-2021-43929 due to an "Injection" flaw: improper neutralization of special elements in output used by a downstream component, allowing remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Affected versions ...

6.5CVSS4.5AI score0.00597EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/02/07 2:15 a.m.19 views

CVE-2021-43929

Improper neutralization of special elements in output used by a downstream component 'Injection' vulnerability in work flow management in Synology DiskStation Manager DSM before 7.0.1-42218-2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

6.5CVSS7.5AI score0.00597EPSS
Exploits0References1
Rows per page
Query Builder