18647 matches found
EUVD-2025-201681
Improper input validation in the Netconf service in Infinera MTC-9 allows remote authenticated users to crash the service and reboot the appliance, thus causing a DoS condition, via crafted XML payloads.This issue affects MTC-9: from R22.1.1.0275 before R23.0...
CVE-2025-26489
The CVE-2025-26489 entry concerns Infinera MTC-9, where the Netconf service suffers from improper input validation. The root cause is input validation flaws in the Netconf interface, allowing remote authenticated users to crash the service and reboot the appliance, causing a DoS. Affected version...
PT-2025-49537
Name of the Vulnerable Software and Affected Versions Infinera MTC-9 versions R22.1.1.0275 through R23.0 Description A flaw exists in the Netconf service of Infinera MTC-9 that allows remotely authenticated users to cause a denial-of-service DoS condition. This is achieved by sending specially...
CVE-2025-29844
A vulnerability in FileStation file cgi allows remote authenticated users to read file metadata and path information...
CVE-2025-29846
A vulnerability in portenable cgi allows remote authenticated users to get the status of installed packages...
CVE-2025-2848
A vulnerability in Synology Mail Server allows remote authenticated attackers to read and write non-sensitive settings, and disable some non-critical functions...
CVE-2024-5401
Improper control of dynamically-managed code resources vulnerability in WebAPI component in Synology DiskStation Manager DSM before 7.1.1-42962-8 and 7.2.1-69057-2 and 7.2.2-72806 and Synology Unified Controller DSMUC before 3.1.4-23079 allows remote authenticated users to obtain privileges witho...
CVE-2025-2848
A vulnerability in Synology Mail Server allows remote authenticated attackers to read and write non-sensitive settings, and disable some non-critical functions...
CVE-2025-2848
A vulnerability in Synology Mail Server allows remote authenticated attackers to read and write non-sensitive settings, and disable some non-critical functions...
CVE-2025-29846
A vulnerability in portenable cgi allows remote authenticated users to get the status of installed packages...
CVE-2025-29843
A vulnerability in FileStation thumb cgi allows remote authenticated users to read/write image files...
CVE-2024-5401
Improper control of dynamically-managed code resources vulnerability in WebAPI component in Synology DiskStation Manager DSM before 7.1.1-42962-8 and 7.2.1-69057-2 and 7.2.2-72806 and Synology Unified Controller DSMUC before 3.1.4-23079 allows remote authenticated users to obtain privileges witho...
CVE-2025-2848
A vulnerability in Synology Mail Server allows remote authenticated attackers to read and write non-sensitive settings, and disable some non-critical functions...
CVE-2025-2848
A vulnerability in Synology Mail Server allows remote authenticated attackers to read and write non-sensitive settings, and disable some non-critical functions...
CVE-2025-2848
CVE-2025-2848 affects Synology Mail Server. Multiple sources describe remote authenticated access that allows reading and writing non-sensitive settings and disabling some non-critical functions, with potential risks to mail configuration stability. PT-Security cites affected DSM versions before ...
CVE-2025-29845
A vulnerability in VideoPlayer2 subtitle cgi allows remote authenticated users to read .srt files...
CVE-2025-29844
A vulnerability in FileStation file cgi allows remote authenticated users to read file metadata and path information...
CVE-2025-29844
CVE-2025-29844 describes a vulnerability in the Synology FileStation file cgi that enables remote authenticated users to read file metadata and path information. The issue has a CVSS v3.1 base score of 4.3 (Medium) with vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N. Connected sources confi...
EUVD-2025-201175
A vulnerability in FileStation file cgi allows remote authenticated users to read file metadata and path information...
CVE-2025-29843
CVE-2025-29843 describes a vulnerability in Synology FileStation thumb CGI within Synology Router Manager (SRM) that allows remote authenticated users to read and write image files. The affected component is FileStation thumb CGI; root cause details are not provided beyond the CGI exposure. Docum...