Skip to main content

Synology DiskStation Manager Multiple Vulnerabilities

Last Update Date: 23 Jul 2014 Release Date: 22 Jul 2014 4151 Views

RISK: Medium Risk

TYPE: Servers - Other Servers

TYPE: Other Servers

Multiple vulnerabilities were identified in Synology DiskStation Manager, which can be exploited by malicious people to disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable device.
 

The vulnerabilities are caused due to a bundled vulnerable version of OpenSSL.


Impact

  • Denial of Service
  • Information Disclosure
  • Data Manipulation

System / Technologies affected

  • Versions prior to 4.3-3827 Update 4
  • Versions prior to 5.0-4493 Update 1

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to version 4.3-3827 Update 4
  • Update to version 5.0-4493 Update 1

Vulnerability Identifier


Source


Related Link