PT-2019-8963 · Synology · Synology Android Moments
Published
2019-04-01
·
Updated
2019-10-09
·
CVE-2018-13298
CVSS v3.1
8.1
High
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Synology Android Moments versions prior to 1.2.3-199
Description
The issue allows man-in-the-middle attackers to execute arbitrary code via unspecified vectors due to a channel accessible by non-endpoint vulnerability in the privacy page.
Recommendations
For versions prior to 1.2.3-199, update to version 1.2.3-199 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Synology Android Moments