Synology-SA-20:07 Synology Calendar

Publish Time: 2020-04-29 18:23:24 UTC+8

Last Updated: 2020-04-29 18:23:24 UTC+8

Severity: Moderate

Status: Resolved

Abstract

Multiple vulnerabilities allow remote authenticated users to download arbitrary files or hijack the authentication of administrators via a susceptible version of Synology Calendar.

Affected Products

Product	Severity	Fixed Release Availability
Synology Calendar	Moderate	Upgrade to 2.3.4-0631 or above.

Mitigation

None

Detail

Reserved

Revision

Revision	Date	Description
1	2020-04-29	Initial public release.

Synology-SA-20:07 Synology Calendar

Company

Sales

Compatibility

Support

Resources