Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2025/01/22 12:0 a.m.12 views

Synology DSM Use of a Broken or Risky Cryptographic Algorithm (CVE-2020-27653)

Algorithm downgrade vulnerability in QuickConnect in Synology DiskStation Manager DSM before 6.2.325426 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via unspecified vectors. This plugin only works with Tenable.ot. Please visit...

8.3CVSS8.2AI score0.00822EPSS
Exploits1References5
NVD
NVD
added 2020/10/29 9:15 a.m.41 views

CVE-2020-27653

Algorithm downgrade vulnerability in QuickConnect in Synology Router Manager SRM before 1.2.4-8081 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via unspecified vectors...

8.3CVSS7.9AI score0.00822EPSS
Exploits1References2
CVE
CVE
added 2020/10/29 8:55 a.m.83 views

CVE-2020-27653

CVE-2020-27653 affects Synology SRM (SRM 1.2.x) via QuickConnect. Talos documents an information-disclosure/mitm scenario where an attacker downgrades the VPN/HTTPS channel from HTTPS to HTTP, enabling interception of web traffic and session cookies. Affected versions include SRM 1.2.3 RT2600ac a...

8.3CVSS8.3AI score0.00822EPSS
Exploits1References2Affected Software2
Cvelist
Cvelist
added 2020/10/29 8:55 a.m.40 views

CVE-2020-27653

Algorithm downgrade vulnerability in QuickConnect in Synology Router Manager SRM before 1.2.4-8081 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via unspecified vectors...

8.3CVSS7.9AI score0.00822EPSS
Exploits1References2
Rows per page
Query Builder