The vulnerability reported in ZDI-CAN-25403 allows remote attackers to execute arbitrary code. The vulnerability reported in ZDI-CAN-25487 allows man-in-the-middle attacker to obain admin sessions. The vulnerability reported in ZDI-CAN-25613 allows remote attackers to read specific files. The vulnerability reported in ZDI-CAN-25617 allows adjacent man-in-the-middle attacker to write specific files. Updates of DSM 7.1 and DSMUC 3.1 will be published within 30 days.
Continue reading...
- - -
Synology Product Security Advisory: check the list
Source: synology.com
Continue reading...
- - -
Synology Product Security Advisory: check the list
Source: synology.com