Synology-SA-22:23 PWN2OWN TORONTO 2022

Publish Time: 2022-12-08 16:57:24 UTC+8

Last Updated: 2023-06-09 11:29:19 UTC+8

Severity
Important
Status
Resolved

Abstract

Multiple vulnerabilities reported by PWN2OWN TORONTO 2022 have been addressed.

Affected Products

Product Severity Fixed Release Availability
DSM 7.1 Important Upgrade to 7.1.1-42962-3 or above.
DSM 7.0 Important Upgrade to 7.0.1-42218-6 or above.
DSM 6.2 Important Upgrade to 6.2.4-25556-7 or above.
SRM 1.3 Important Upgrade to 1.3.1-9346-3 or above.
SRM 1.2 Important Upgrade to 1.2.5-8227-6 or above.

Mitigation

None

Detail

  • CVE-2022-45188
    • Severity: Important
    • CVSS3 Base Score: 8.8
    • CVSS3 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
    • Netatalk through 3.1.13 has an afp_getappl heap-based buffer overflow resulting in code execution via a crafted .appl file. This provides remote root access on some platforms such as FreeBSD (used for TrueNAS).

Acknowledgement

  • Kyle Zeng, Wil Gibbs, Jayakrishna Menon, and SEFCOM

  • Claroty Research - Vera Mens, Uri Katz, Noam Moshe, Sharon Brizinov

Reference

PWN2OWN TORONTO 2022

Revision

Revision Date Description
1 2022-12-08 Initial public release.
2 2022-12-22 Update for SRM 1.3 and SRM 1.2 is now available in Affected Products.
3 2023-01-04 Update for DSM 7.0 is now available in Affected Products.
4 2023-05-02 Update for DSM 6.2 is now available in Affected Products.