Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/06/02 10:2 a.m.13 views

CVE-2026-2237

A use of get request method with sensitive query strings vulnerability in volume encryption of Synology Storage Manager package before 1.0.1-1100 allows local users on Windows to obtain sensitive information...

6.2CVSS5.8AI score0.00092EPSS
Exploits0References1
NVD
NVD
added 2026/05/27 9:16 a.m.11 views

CVE-2026-2237

A use of get request method with sensitive query strings vulnerability in volume encryption of Synology Storage Manager package before 1.0.1-1100 allows local users on Windows to obtain sensitive information...

6.2CVSS0.00092EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/27 8:44 a.m.10 views

CVE-2026-2237

A use of get request method with sensitive query strings vulnerability in volume encryption of Synology Storage Manager package before 1.0.1-1100 allows local users on Windows to obtain sensitive information...

6.2CVSS5.8AI score0.00092EPSS
Exploits0References1
CVE
CVE
added 2026/05/27 8:44 a.m.19 views

CVE-2026-2237

CVE-2026-2237 : A vulnerability in the Synology Storage Manager package (volume encryption) prior to version 1.0.1-1100 arises from using GET requests with sensitive query strings. This allows a local attacker to read sensitive information. Documents identify the affected component as the Storage...

6.2CVSS5.8AI score0.00092EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/27 8:44 a.m.34 views

CVE-2026-2237

A use of get request method with sensitive query strings vulnerability in volume encryption of Synology Storage Manager package before 1.0.1-1100 allows local users on Windows to obtain sensitive information...

6.2CVSS0.00092EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/27 8:44 a.m.29 views

CVE-2026-2237

A use of get request method with sensitive query strings vulnerability in volume encryption of Synology Storage Manager package before 1.0.1-1100 allows local users on Windows to obtain sensitive information...

6.2CVSS5.8AI score0.00092EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/27 8:44 a.m.13 views

EUVD-2026-32153

A use of get request method with sensitive query strings vulnerability in volume encryption of Synology Storage Manager package before 1.0.1-1100 allows local attackers to obtain sensitive information...

6.2CVSS5.8AI score0.00092EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.12 views

PT-2026-43592

Name of the Vulnerable Software and Affected Versions Synology Storage Manager versions prior to 1.0.1-1100 Description A flaw in the volume encryption component allows local attackers to obtain sensitive information. This occurs because the application uses the GET request method with sensitive...

6.2CVSS5.8AI score0.00092EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2022-32119

Malicious code in bioql PyPI...

6.8CVSS6.6AI score0.01189EPSS
Exploits0References1
Virtuozzo
Virtuozzo
added 2024/10/29 12:0 a.m.26 views

Virtuozzo Hybrid Infrastructure 6.3 (6.3.0-170)

In this release, Virtuozzo Hybrid Infrastructure provides a range of new features that cover the compute service and our ecosystem of backup and disaster recovery solutions. Additionally, this release delivers stability and security improvements, and addresses issues found in previous releases...

7.5AI score
Exploits0
NVD
NVD
added 2022/08/03 3:15 a.m.22 views

CVE-2022-27618

Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in webapi component in Synology Storage Analyzer before 2.1.0-0390 allows remote authenticated users to delete arbitrary files via unspecified vectors...

6.8CVSS0.01189EPSS
Exploits0References1
Prion
Prion
added 2022/08/03 3:15 a.m.23 views

Path traversal

Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in webapi component in Synology Storage Analyzer before 2.1.0-0390 allows remote authenticated users to delete arbitrary files via unspecified vectors...

4.7CVSS6.1AI score0.01189EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/08/03 2:20 a.m.66 views

CVE-2022-27618

CVE-2022-27618 affects Synology Storage Analyzer prior to 2.1.0-0390. The vulnerability is a Path Traversal in the webapi component that, if exploited by remote authenticated users, enables deletion of arbitrary files. The issue stems from improper restriction of pathnames to restricted directori...

6.8CVSS6.1AI score0.01189EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/08/03 2:20 a.m.25 views

CVE-2022-27618

Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in webapi component in Synology Storage Analyzer before 2.1.0-0390 allows remote authenticated users to delete arbitrary files via unspecified vectors...

6.8CVSS6.5AI score0.01189EPSS
Exploits0References1
Rows per page
Query Builder