Diskstation Manager Unified Controller Security Vulnerabilities and Issues — Diskstation Manager Unified Controller CVE List

Lucene search

SynologyDiskstation Manager Unified Controller

5 matches found

CVE•added 2021/02/26 10:15 p.m.•86 views

CVE-2021-26563

Incorrect authorization vulnerability in synoagentregisterd in Synology DiskStation Manager (DSM) before 6.2.4-25553 allows local users to execute arbitrary code via unspecified vectors.

8.2CVSS7AI score0.00107EPSS

CVE•added 2021/02/26 10:15 p.m.•79 views

CVE-2021-26564

Cleartext transmission of sensitive information vulnerability in synorelayd in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows man-in-the-middle attackers to spoof servers via an HTTP session.

8.7CVSS8.6AI score0.00151EPSS

CVE•added 2021/02/26 10:15 p.m.•67 views

CVE-2021-26565

8.3CVSS6.9AI score0.00168EPSS

CVE•added 2023/06/13 7:15 a.m.•56 views

CVE-2023-0142

Uncontrolled search path element vulnerability in Backup Management functionality in Synology DiskStation Manager (DSM) before 6.2.4-25556-8, 7.0.1-42218-7 and 7.1-42661 allows remote authenticated users with administrator privileges to read or write arbitrary files via unspecified vectors.

8.1CVSS6.9AI score0.00132EPSS

CVE•added 2021/06/23 10:15 a.m.•37 views

CVE-2021-29085

Improper neutralization of special elements in output used by a downstream component ('Injection') vulnerability in file sharing management component in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to read arbitrary files via unspecified vectors.

8.6CVSS8.4AI score0.00376EPSS