CVE-2017-11156

Synology Download Station 3.8.x before 3.8.5-3475 and 3.x before 3.5-2984 uses weak permissions (0777) for ui/dlm/btsearch directory, which allows remote authenticated users to execute arbitrary code by uploading an executable via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
synologyCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 80%
VendorProductVersion
synologydownload_station
3.2-2295
synologydownload_station
3.3-2382
synologydownload_station
3.3-2383
synologydownload_station
3.3-2386
synologydownload_station
3.4-2477
synologydownload_station
3.4-2478
synologydownload_station
3.4-2480
synologydownload_station
3.4-2485
synologydownload_station
3.4-2486
synologydownload_station
3.4-2489
synologydownload_station
3.4-2490
synologydownload_station
3.4-2514
synologydownload_station
3.4-2555
synologydownload_station
3.4-2557
synologydownload_station
3.4-2558
synologydownload_station
3.5-2638
synologydownload_station
3.5-2705
synologydownload_station
3.5-2706
synologydownload_station
3.5-2955
synologydownload_station
3.5-2956
synologydownload_station
3.5-2962
synologydownload_station
3.5-2963
synologydownload_station
3.5-2967
synologydownload_station
3.5-2968
synologydownload_station
3.5-2970
synologydownload_station
3.5-2973
synologydownload_station
3.5-2980
synologydownload_station
3.5-2982
synologydownload_station
3.8.0-3416
synologydownload_station
3.8.1-3420
synologydownload_station
3.8.2-3455
synologydownload_station
3.8.3-3458
synologydownload_station
3.8.4-3468
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.synology.com/en-global/support/security/Synology_SA_17_28_Download_Station
https://www.synology.com/en-global/support/security/Synology_SA_17_28_Download_Station