Gauravb

**Name of the Vulnerable Software and Affected Versions** Synology Router Manager versions prior to 1.2.5-8227-6 Synology Router Manager versions prior to 1.3.1-9346-3 **Description** The issue is related to improper neutralization of special elements used in an OS command, allowing man-in-the-middle attackers to execute arbitrary commands. This can be exploited by remote attackers to execute commands via unspecified vectors. **Recommendations** For versions prior to 1.2.5-8227-6, update to version 1.2.5-8227-6 or later. For versions prior to 1.3.1-9346-3, update to version 1.3.1-9346-3 or later.

**Name of the Vulnerable Software and Affected Versions** Synology Router Manager versions prior to 1.2.5-8227-6 Synology Router Manager versions prior to 1.3.1-9346-3 **Description** The issue is related to an integer overflow or wraparound vulnerability in the CGI component of Synology Router Manager. This vulnerability can be exploited by a remote attacker to impact the confidentiality, integrity, and availability of protected information. The vulnerability allows remote attackers to overflow buffers via unspecified vectors. **Recommendations** For versions prior to 1.2.5-8227-6, update to version 1.2.5-8227-6 or later. For versions prior to 1.3.1-9346-3, update to version 1.3.1-9346-3 or later.