Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Server-Side request forgery (SSRF) vulnerability in task management component in Synology Download Station before 3.8.15-3563 allows remote authenticated users to read arbitrary files via unspecified vectors.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
Synology Download Station 代码问题漏洞
Vulnerability Description
Synology Download Station是一款浏览器扩展。可以在不访问 群晖 网页版本的情况下,浏览下载中心套件的正在下载与已下载任务,还可以添加任务。 Synology Download Station 3.8.15-3563之前存在安全漏洞,该漏洞允许远程认证用户通过未指定的矢量读取任意文件。
CVSS Information
N/A
Vulnerability Type
N/A