N/A

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in encrypted share umount functionality in Synology Active Backup for Business before 2.7.1-13234, 2.7.1-23234 and 2.7.1-3234 allows remote authenticated users to write specific files via unspecified vectors.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

文件名或路径的外部可控制

Synology Active Backup for Business 路径遍历漏洞

Synology Active Backup for Business是中国群晖（Synology）公司的一个备份程序。 Synology Active Backup for Business存在路径遍历漏洞，该漏洞源于允许远程认证用户可以通过未明向量写入特定文件。

N/A

N/A