We use cookies to help us improve our webpage. Please read our Cookie Policy.

Synology-SA-18:26 DSM

Publish Time: 2018-05-31 10:52:07 UTC+8

Last Updated: 2018-05-31 10:52:07 UTC+8

Severity
Moderate
Status
Resolved

Abstract

A vulnerability allows remote authenticated users to inject arbitrary web script or HTML via a susceptible version of Synology DiskStation Manager (DSM).

Affected Products

Product Severity Fixed Release Availability
DSM 6.2 Not affected None
DSM 6.1 Moderate Upgrade to 6.1.4-15217-3 or above.
DSM 6.0 Moderate Upgrade to 6.1.4-15217-3 or above.
DSM 5.2 Moderate Upgrade to 6.1.4-15217-3 or above.

Mitigation

None

Detail

Reserved

Revision

Revision Date Description
1 2018-05-31 Initial public release.