None of Synology products are affected by CVE-2019-10072 as the vulnerability only affects Tomcat 8.5 and later. Continue reading... - - - Source: synology.com