Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Insertion of sensitive information into log file vulnerability in proxy settings component in Synology Drive Client before 3.3.0-15082 allows remote authenticated users to obtain sensitive information via unspecified vectors.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
通过日志文件的信息暴露
Vulnerability Title
Synology Drive 日志信息泄露漏洞
Vulnerability Description
Synology Drive是中国群晖科技(Synology)公司的一套协同办公套件。该产品包括文档管理、协同办公和文件同步备份等功能。 Synology Drive 3.3.0-15082之前版本存在日志信息泄露漏洞,该漏洞源于存在将敏感信息插入日志文件的漏洞,允许远程经过身份验证的用户通过未指定的向量获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A