Synology-SA-21:21 Audio Station

Publish Time: 2021-06-16 16:05:29 UTC+8

Last Updated: 2021-06-16 16:05:29 UTC+8

Severity
Important
Status
Resolved

Abstract

A vulnerability allows remote attackers to execute arbitrary commands via a susceptible version of Audio Station.

Affected Products

Product Severity Fixed Release Availability
Audio Station 6[1] Important Upgrade to 6.5.4-3367 or above.
Audio Station 5[2] Critical Please upgrade to DSM 6.2 and upgrade Audio Station to 6.5.4-3367 or above.

[1] This version has been published on 2020/03/03

[2] DSM 5.2 has reached end-of-life on 2019/6/30

Mitigation

None

Detail

Reserved

Acknowledgement

Qian Chen

Revision

Revision Date Description
1 2021-06-16 Initial public release.