Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Synology NAS servers DS107, DS116, and DS213, use default credentials
Vulnerability Description
Synology NAS servers DS107, firmware version 3.1-1639 and prior, and DS116, DS213, firmware versions prior to 5.2-5644-1, use non-random default credentials of: guest:(blank) and admin:(blank) . A remote network attacker can gain privileged access to a vulnerable device.
CVSS Information
N/A
Vulnerability Type
凭证管理
Vulnerability Title
多款Synology产品信任管理漏洞
Vulnerability Description
Synology DiskStation DS107等都是群晖(Synology)公司的网络储存服务器(NAS)。 多款Synology产品中存在信任管理漏洞,该漏洞源于程序使用了非随机默认凭证(guest:(blank)和admin:(blank))。远程攻击者可利用该漏洞获取权限,完全控制设备。以下产品和版本受到影响:运行3.1-1639及之前版本固件的Synology DiskStation DS107;运行5.2-5644-1之前版本固件的Synology DiskStation DS116;运行
CVSS Information
N/A
Vulnerability Type
N/A