CVE-2017-12077 allows remote authenticated users to exhaust the memory resources and conduct a denial-of-service attack via a vulnerable version of Synology Router Manager (SRM).
- Impact: Low
- CVSS3 Base Score: 2.7
- CVSS3 Base Metrics: CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L
- SRM before 1.1.4-6509
- All Synology models
Uncontrolled Resource Consumption vulnerability in SYNO.Core.PortForwarding.Rules in Synology Router Manager (SRM) before 1.1.4-6509 allows remote authenticated attacker to exhaust the memory resources of the machine, causing a denial of service attack.
To fix the security issue, please update SRM 1.1 to 1.1.4-6509 or above.