Synology-SA-21:03 DSM
Publish Time: 2021-02-23 03:15:43 UTC+8
Last Updated: 2021-02-23 03:15:43 UTC+8
- Severity
- Important
- Status
- Pending
Abstract
Multiple vulnerabilities allow remote attackers to obtain sensitive information or local users to execute arbitrary code via a susceptible version of DiskStation Manager (DSM).
Affected Products
| Product | Severity | Fixed Release Availability |
|---|---|---|
| DSM 6.2 | Important | Upgrade to 6.2.4-25553 or above. |
| DSM UC 3.0 | Important | Pending |
| SkyNAS | Important | Pending |
| VS960HD | Important | Pending |
Mitigation
None
Detail
Reserved
Acknowledgement
Claudio Bozzato of Cisco Talos
Revision
| Revision | Date | Description |
|---|---|---|
| 1 | 2021-02-23 | Initial public release. |