CVE-2018-13284
CVE-2018-13284 is a command-injection flaw in the FTP daemon (ftpd) of Synology DiskStation Manager (DSM) before version 6.2-23739-1. The issue allows remote authenticated users to run arbitrary OS commands via the MKD or RMD commands, indicating an input handling flaw in command construction. Im...