Download Station 3.5-2967

Severity
Security.impact_level_
Status
Resolved

Description

Download Station version 3.5-2967 includes the security fix for malicious attacks to address the following security vulnerability:

  • One vulnerability that allows an attacker to execute cross-site scripting (XSS) attacks and perform arbitrary actions such as stealing session tokens or redirecting to potentially malicious websites.

Resolution

To fix the security issue, please go to DSM > Package Center, install the latest version 3.5-2967 of Download Station package to protect DiskStation from malicious attacks.