Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2024/10/01 12:0 a.m.17 views

Synology DiskStation Manager Cleartext Transmission of Sensitive Information (CVE-2021-26564)

Cleartext transmission of sensitive information vulnerability in synorelayd in Synology DiskStation Manager DSM before 6.2.3-25426-3 allows man-in-the-middle attackers to spoof servers via an HTTP session. This plugin only works with Tenable.ot. Please visit...

8.7CVSS7.9AI score0.00602EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2022/11/16 12:0 a.m.25 views

Synology DiskStation Manager (DSM) 6.2.x < 6.2.3-25426-3 Multiple Vulnerabilities (Synology-SA-20:26) - Remote Known Vulnerable Versions Check

Synology DiskStation Manager DSM is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS7.9AI score0.03786EPSS
Exploits6References1
OpenVAS
OpenVAS
added 2022/11/16 12:0 a.m.28 views

Synology DiskStation Manager (DSM) 6.2.x < 6.2.3-25426-3 Multiple Vulnerabilities (Synology-SA-20:26) - Unreliable Remote Version Check

Synology DiskStation Manager DSM is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS7.9AI score0.03786EPSS
Exploits6References1
CVE
CVE
added 2021/02/26 9:45 p.m.94 views

CVE-2021-26564

CVE-2021-26564 is a vulnerability in Synology DiskStation Manager (DSM) due to cleartext transmission in the synorelayd component prior to version 6.2.3-25426-3. The flaw allows man-in-the-middle attackers to spoof servers via an HTTP session, exposing sensitive information. Connected sources ali...

8.7CVSS8.6AI score0.00602EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder