CVE-2020-27655

Name of the Vulnerable Software and Affected Versions Synology Router Manager (SRM) versions prior to 1.2.4-8081

Description The issue is related to improper access control, allowing remote attackers to access restricted resources via inbound QuickConnect traffic. This can be exploited by attackers to gain unauthorized access.

Recommendations For Synology Router Manager (SRM) versions prior to 1.2.4-8081, update to version 1.2.4-8081 or later to resolve the issue. As a temporary workaround, consider restricting inbound QuickConnect traffic to minimize the risk of exploitation.