Synology Security Synology-SA-19:31 SRM

[Synology RSS]

A vulnerability allows remote authenticated users to set a new password without verification via a susceptible version of Synology Router Manager (SRM).

Continue reading...
- - -
Source: synology.com

 

[wwwampy]

Updated manually to SRM 1.2.3-8017. No problems after update.

 

[fredbert]

Yeah I noticed that too ... the email alert said it was fixed in SRM 1.2.3 yet that version isn't advertising as available on my kit. When I realised this I took the plunge and manually updated my routers too. Hope there isn't the same issues with early updating like has been happening with DSM recently.