Synology-SA-21:21 Audio Station

Publish Time: 2021-06-16 16:05:29 UTC+8

Last Updated: 2021-06-16 16:05:29 UTC+8

Abstract

A vulnerability allows remote attackers to execute arbitrary commands via a susceptible version of Audio Station.

Affected Products

Product	Severity	Fixed Release Availability
Audio Station 6^[1]	Important	Upgrade to 6.5.4-3367 or above.
Audio Station 5^[2]	Critical	Please upgrade to DSM 6.2 and upgrade Audio Station to 6.5.4-3367 or above.

^[1] This version has been published on 2020/03/03

^[2] DSM 5.2 has reached end-of-life on 2019/6/30

Mitigation

None

Detail

Reserved

Acknowledgement

Qian Chen

Revision

Revision	Date	Description
1	2021-06-16	Initial public release.