CVE-2018-13281
31.10.2018, 16:29
Information exposure vulnerability in SYNO.Core.ACL in Synology DiskStation Manager (DSM) before 6.2-23739-2 allows remote authenticated users to determine the existence and obtain the metadata of arbitrary files via the file_path parameter.Enginsight
| Vendor | Product | Version |
|---|---|---|
| synology | skynas | - |
| synology | vs960hd | - |
| synology | diskstation_manager | 6.1 ≤ 𝑥 < 6.1.7-15284-2 |
| synology | diskstation_manager | 6.2 ≤ 𝑥 < 6.2-23739-2 |
| synology | diskstation_manager | 5.2 |
| synology | diskstation_manager | 6.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration