Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiDiscovered by: Claroty Research - Vera Mens, Noam Moshe, Uri Katz, Sharon BrizinovZDI-23-1342
HistorySep 07, 2023 - 12:00 a.m.

Synology RT6600ax info.cgi Exposure of Sensitive Data Information Disclosure Vulnerability

2023-09-0700:00:00
Discovered by: Claroty Research - Vera Mens, Noam Moshe, Uri Katz, Sharon Brizinov
www.zerodayinitiative.com
20
synology
rt6600ax
vulnerability
sensitive data
info.cgi
exposure
wan interface

EPSS

0.001

Percentile

42.5%

JSON

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Synology RT6600ax routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the info.cgi file. The issue results from the exposure of sensitive data to the WAN interface. An attacker can leverage this vulnerability to disclose certain information in the context of the current process.

Related

prion 1
cve 1
vulnrichment 1
nvd 1
cvelist 1
openvas 2
prion
prion
Information disclosure
2023-08-31 10:15:00
cve
cve
CVE-2023-41741
2023-08-31 10:15:08
vulnrichment
vulnrichment
CVE-2023-41741
2023-08-31 09:08:59
nvd
nvd
CVE-2023-41741
2023-08-31 10:15:08
cvelist
cvelist
CVE-2023-41741
2023-08-31 09:08:59
openvas
openvas
Synology Router Manager (SRM) 1.3.x < 1.3.1-9346-6 Multiple Vulnerabilities (Synology-SA-23:10) - Remote Known Vulnerable Versions Check
2023-07-28 00:00:00
Synology Router Manager (SRM) 1.3.x < 1.3.1-9346-6 Multiple Vulnerabilities (Synology-SA-23:10) - Unreliable Remote Version Check
2023-07-28 00:00:00

EPSS

0.001

Percentile

42.5%

JSON
Related for ZDI-23-1342
prion1cve1vulnrichment1nvd1cvelist1openvas2