Skynas Firmware Security Vulnerabilities and Issues — Skynas Firmware CVE List

Lucene search

SynologySkynas Firmware

5 matches found

CVE•added 2021/02/26 10:15 p.m.•91 views

CVE-2021-26562

Out-of-bounds write vulnerability in synoagentregisterd in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows man-in-the-middle attackers to execute arbitrary code via syno_finder_site HTTP header.

9CVSS8.7AI score0.01702EPSS

CVE•added 2021/02/26 10:15 p.m.•87 views

CVE-2021-26566

Insertion of sensitive information into sent data vulnerability in synorelayd in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows man-in-the-middle attackers to execute arbitrary commands via inbound QuickConnect traffic.

9CVSS9.2AI score0.00437EPSS

CVE•added 2021/02/26 10:15 p.m.•80 views

CVE-2021-26561

Stack-based buffer overflow vulnerability in synoagentregisterd in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows man-in-the-middle attackers to execute arbitrary code via syno_finder_site HTTP header.

9CVSS8.8AI score0.02432EPSS

CVE•added 2021/02/26 10:15 p.m.•67 views

CVE-2021-26560

Cleartext transmission of sensitive information vulnerability in synoagentregisterd in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows man-in-the-middle attackers to spoof servers via an HTTP session.

9CVSS7.7AI score0.00151EPSS

CVE•added 2020/10/29 9:15 a.m.•51 views

CVE-2020-27648

Improper certificate validation vulnerability in OpenVPN client in Synology DiskStation Manager (DSM) before 6.2.3-25426-2 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

9CVSS8.4AI score0.00177EPSS