Cq674350529

**Name of the Vulnerable Software and Affected Versions** Synology Presto File Server versions prior to 2.1.2-1601 **Description** The issue is related to improper privilege management in the summary report management of Synology Presto File Server. This allows remote authenticated users to bypass security constraints. **Recommendations** For versions prior to 2.1.2-1601, update to version 2.1.2-1601 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Synology Presto File Server versions prior to 2.1.2-1601 **Description** The issue is related to improper limitation of a pathname to a restricted directory, also known as 'Path Traversal', in file operation management. This allows remote attackers to write arbitrary files via unspecified vectors. **Recommendations** For versions prior to 2.1.2-1601, update to version 2.1.2-1601 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Synology DiskStation Manager (DSM) versions prior to 7.1-42661 **Description** The issue concerns a missing authentication mechanism for a critical function in the iSCSI management functionality. This allows remote attackers to read or write arbitrary files via unspecified vectors. **Recommendations** For versions prior to 7.1-42661, update to version 7.1-42661 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Synology DiskStation Manager (DSM) versions prior to 7.1-42661 **Description** A Server-Side Request Forgery (SSRF) issue in the Package Center functionality allows remote authenticated users to access intranet resources via unspecified vectors. This could potentially lead to unauthorized access to internal resources. **Recommendations** For versions prior to 7.1-42661, update to version 7.1-42661 or later to resolve the issue. As a temporary workaround, consider restricting access to the Package Center functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Cisco IOS XR Software (affected versions not specified) **Description** A vulnerability in the Cisco Discovery Protocol implementation could allow an unauthenticated, adjacent attacker to cause the Cisco Discovery Protocol process to reload on an affected device. This issue is due to a heap buffer overflow in certain Cisco Discovery Protocol messages. An attacker could exploit this vulnerability by sending a malicious Cisco Discovery Protocol packet to an affected device, potentially causing a heap overflow and leading to the reload of the Cisco Discovery Protocol process. The bytes that can be written in the buffer overflow are restricted, limiting remote code execution. Note that Cisco Discovery Protocol is a Layer 2 protocol, and to exploit this vulnerability, an attacker must be in the same broadcast domain as the affected device. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Synology DiskStation Manager (DSM) versions prior to 7.0.1-42218-3 **Description** The issue is related to improper neutralization of special elements used in an OS command, also known as 'OS Command Injection'. This allows remote authenticated users to execute arbitrary commands via unspecified vectors. The webapi component in Synology DiskStation Manager (DSM) is affected. **Recommendations** For versions prior to 7.0.1-42218-3, update to version 7.0.1-42218-3 or later to resolve the issue. As a temporary workaround, consider restricting access to the webapi component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Synology Calendar versions prior to 2.3.4-0631 **Description** The issue is related to an improper limitation of a pathname to a restricted directory, also known as a 'Path Traversal' vulnerability, in the webapi component. This allows remote authenticated users to download arbitrary files via unspecified vectors. **Recommendations** For versions prior to 2.3.4-0631, update to version 2.3.4-0631 or later to resolve the issue. As a temporary workaround, consider restricting access to the webapi component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Synology USB Copy versions prior to 2.2.0-1086 **Description** The issue is related to a Path Traversal vulnerability in the webapi component, allowing remote authenticated users to read or write arbitrary files via unspecified vectors. **Recommendations** For versions prior to 2.2.0-1086, update to version 2.2.0-1086 or later to resolve the issue. As a temporary workaround, consider restricting access to the webapi component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Synology SSO Server versions prior to 2.2.3-0331 **Description** The issue is related to a Path Traversal vulnerability in the webapi component, allowing remote authenticated users to read arbitrary files via unspecified vectors. **Recommendations** For versions prior to 2.2.3-0331, update to version 2.2.3-0331 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Synology Note Station Client versions prior to 2.2.2-609 **Description** The issue concerns a cleartext transmission of sensitive information vulnerability in authentication management. This allows man-in-the-middle attackers to obtain sensitive information via unspecified vectors. **Recommendations** For versions prior to 2.2.2-609, update to version 2.2.2-609 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive information and minimizing the use of unsecured connections until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Synology Storage Analyzer versions prior to 2.1.0-0390 **Description** The issue is related to a Path Traversal vulnerability in the webapi component, allowing remote authenticated users to delete arbitrary files via unspecified vectors. **Recommendations** For versions prior to 2.1.0-0390, update to version 2.1.0-0390 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Synology WebDAV Server versions prior to 2.4.0-0062 **Description** The issue is related to an improper limitation of a pathname to a restricted directory, also known as a 'Path Traversal' vulnerability, in the webapi component. This allows remote authenticated users to delete arbitrary files via unspecified vectors. **Recommendations** For versions prior to 2.4.0-0062, update to version 2.4.0-0062 or later to resolve the issue. As a temporary workaround, consider restricting access to the webapi component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Synology Media Server versions prior to 1.8.1-2876 **Description** The issue is related to a buffer copy without checking the size of the input, also known as a 'Classic Buffer Overflow' vulnerability, in the cgi component. This allows remote attackers to execute arbitrary code via unspecified vectors. **Recommendations** For Synology Media Server versions prior to 1.8.1-2876, update to version 1.8.1-2876 or later to resolve the issue. As a temporary workaround, consider restricting access to the cgi component until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Synology Audio Station versions prior to 6.5.4-3367 **Description** The issue is related to an improper limitation of a pathname to a restricted directory, also known as a 'Path Traversal' vulnerability, in the webapi component. This allows remote authenticated users to delete arbitrary files via unspecified vectors. **Recommendations** For versions prior to 6.5.4-3367, update to version 6.5.4-3367 or later to resolve the issue. As a temporary workaround, consider restricting access to the webapi component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Synology Audio Station versions prior to 6.5.4-3367 **Description** The issue is related to a buffer copy without checking the size of the input, also known as a 'Classic Buffer Overflow' vulnerability, in the cgi component. This allows remote attackers to execute arbitrary commands via unspecified vectors. **Recommendations** For versions prior to 6.5.4-3367, update to version 6.5.4-3367 or later to resolve the issue. As a temporary workaround, consider restricting access to the cgi component in Synology Audio Station until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Synology CardDAV Server versions prior to 6.0.10-0153 **Description** The issue is related to improper neutralization of special elements used in an SQL command, allowing remote authenticated users to inject SQL commands via unspecified vectors. This is a SQL Injection vulnerability in the webapi component. **Recommendations** For versions prior to 6.0.10-0153, update to version 6.0.10-0153 or later to resolve the issue. As a temporary workaround, consider restricting access to the webapi component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Synology DNS Server versions prior to 2.2.2-5027 **Description** The issue is related to a Path Traversal vulnerability in the cgi component, allowing remote authenticated users to delete arbitrary files. **Recommendations** For versions prior to 2.2.2-5027, update to version 2.2.2-5027 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Synology DiskStation Manager (DSM) versions prior to 6.2.3-25423 **Description** The issue is related to a Path Traversal vulnerability in the webapi component. This allows remote authenticated users to delete arbitrary files. **Recommendations** For versions prior to 6.2.3-25423, update to version 6.2.3-25423 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Synology Calendar versions prior to 2.3.4-0631 **Description** A Cross-Site Request Forgery (CSRF) issue in the webapi component allows remote authenticated users to hijack the authentication of administrators via unspecified vectors. This could potentially lead to unauthorized actions being taken on behalf of the administrators. **Recommendations** For versions prior to 2.3.4-0631, update to version 2.3.4-0631 or later to resolve the issue. As a temporary workaround, consider implementing additional authentication checks or restrictions on the webapi component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mikrotik RouterOs versions prior to 6.48.2 **Description** The issue is a memory corruption vulnerability in the ptp process. An authenticated remote attacker can cause a Denial of Service (NULL pointer dereference). **Recommendations** For versions prior to 6.48.2, update to stable version 6.48.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the ptp process to minimize the risk of exploitation.