Info Multiple vulnerabilities in Synology DiskStation Manager

Currently reading
Info Multiple vulnerabilities in Synology DiskStation Manager

Telos

Subscriber
1,485
500
NAS
DS418play, DS213j, DS3622+, DSM 7.1.4-11091
April 20, 2021
Cisco Talos recently discovered multiple vulnerabilities in Synology DiskStation Manager.

Read on...
 

fredbert

Moderator
NAS Support
Subscriber
2,235
898
NAS
DS1520+, DS218+, DS215j
Router
  1. RT2600ac
  2. MR2200ac
Operating system
  1. macOS
Mobile operating system
  1. iOS
Hmm, run on DSM 6.2.3 25426-2.

The DSM 6.2.3 25426-3 and 6.2.4 release notes reference fixes for acknowledged security vulnerabilities, including ones discovered by the same person. Haven't had time to cross-reference the CVE.
 

Telos

Subscriber
1,485
500
NAS
DS418play, DS213j, DS3622+, DSM 7.1.4-11091
Good catch. I thought that a new post from Cisco would be accurate. But following your post, I tracked down the cited TALOS entries, and it appears that Synology stated that these vulnerabilities were "fixed" in 6.2.3-25426 Update 3.

Source
 

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Log in

Already have an account? Log in here.

Similar threads

Welcome to SynoForum.com!

SynoForum.com is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Trending threads

Top