2017-12-22 15:29:13 2019-10-10 01:25:17

An improper access control vulnerability in synodsmnotify in Synology DiskStation Manager (DSM) before 6.1.4-15217 and before 6.0.3-8754-6 allows local users to inject arbitrary web script or HTML via the -fn option.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

NONE
Synology Diskstation manager 6.0.1-7393 (not an official CPE) Synology Diskstation manager 6.0.1-7393-1 (not an official CPE) Synology Diskstation manager 6.0.1-7393-2 (not an official CPE) Synology Diskstation manager 6.0.2-8451 (not an official CPE) Synology Diskstation manager 6.0.2-8451-1 (not an official CPE) Synology Diskstation manager 6.0.2-8451-2 (not an official CPE) Synology Diskstation manager 6.0.2-8451-3 (not an official CPE) Synology Diskstation manager 6.0.2-8451-4 (not an official CPE) Synology Diskstation manager 6.0.2-8451-5 (not an official CPE) Synology Diskstation manager 6.0.2-8451-6 (not an official CPE) Synology Diskstation manager 6.0.2-8451-7 (not an official CPE) Synology Diskstation manager 6.0.2-8451-8 (not an official CPE) Synology Diskstation manager 6.0.2-8451-9 (not an official CPE) Synology Diskstation manager 6.0.2-8451-10 (not an official CPE) Synology Diskstation manager 6.0.3-8754 (not an official CPE) Synology Diskstation manager 6.0.3-8754-1 (not an official CPE) Synology Diskstation manager 6.0.3-8754-3 (not an official CPE) Synology Diskstation manager 6.0.3-8754-4 (not an official CPE) Synology Diskstation manager 6.1.1 (not an official CPE) Synology Diskstation manager 6.1.1-15101 (not an official CPE) Synology Diskstation manager 6.1.1-15101-1 (not an official CPE) Synology Diskstation manager 6.1.1-15101-2 (not an official CPE) Synology Diskstation manager 6.1.1-15101-3 (not an official CPE) Synology Diskstation manager 6.1.1-15101-4 (not an official CPE) Synology Diskstation manager 6.1.2-15132 (not an official CPE) Synology Diskstation manager 6.1.2-15132-1 (not an official CPE) Synology Diskstation manager 6.1.3-15152 (not an official CPE) Synology Diskstation manager 6.1.3-15152-1 (not an official CPE) Synology Diskstation manager 6.1.3-15152-3 (not an official CPE) Synology Diskstation manager 6.1.3-15152-4 (not an official CPE) Synology Diskstation manager 6.1.3-15152-5 (not an official CPE) Synology Diskstation manager 6.1.3-15152-6 (not an official CPE) Synology Diskstation manager 6.1.3-15152-7 (not an official CPE) Synology Diskstation manager 6.1.3-15152-8 (not an official CPE)

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') (ID 74)

Related CAPEC 38 Buffer Overflow via Environment Variables (CAPEC-ID 10) Server Side Include (SSI) Injection (CAPEC-ID 101) Cross Site Scripting through Log Files (CAPEC-ID 106) Command Line Execution through SQL Injection (CAPEC-ID 108) Subverting Environment Variable Values (CAPEC-ID 13) Format String Injection (CAPEC-ID 135) Client-side Injection-induced Buffer Overflow (CAPEC-ID 14) Filter Failure through Buffer Overflow (CAPEC-ID 24) XML Injection (CAPEC-ID 250) Leverage Alternate Encoding (CAPEC-ID 267) HTTP Response Smuggling (CAPEC-ID 273) Fuzzing (CAPEC-ID 28) Using Leading 'Ghost' Character Sequences to Bypass Input Filters (CAPEC-ID 3) HTTP Response Splitting (CAPEC-ID 34) Manipulating Writeable Terminal Devices (CAPEC-ID 40) MIME Conversion (CAPEC-ID 42) Exploiting Multiple Input Interpretation Layers (CAPEC-ID 43) Buffer Overflow via Symbolic Links (CAPEC-ID 45) Overflow Variables and Tags (CAPEC-ID 46) Buffer Overflow via Parameter Expansion (CAPEC-ID 47) Poison Web Service Registry (CAPEC-ID 51) Embedding NULL Bytes (CAPEC-ID 52) Postfix, Null Terminate, and Backslash (CAPEC-ID 53) Using Slashes and URL Encoding Combined to Bypass Validation Logic (CAPEC-ID 64) SQL Injection (CAPEC-ID 66) String Format Overflow in syslog() (CAPEC-ID 67) Blind SQL Injection (CAPEC-ID 7) Using Unicode Encoding to Bypass Validation Logic (CAPEC-ID 71) URL Encoding (CAPEC-ID 72) Manipulating Input to File System Calls (CAPEC-ID 76) Using Escaped Slashes in Alternate Encoding (CAPEC-ID 78) Using Slashes in Alternate Encoding (CAPEC-ID 79) Buffer Overflow in an API Call (CAPEC-ID 8) Using UTF-8 Encoding to Bypass Validation Logic (CAPEC-ID 80) XPath Injection (CAPEC-ID 83) XQuery Injection (CAPEC-ID 84) Buffer Overflow in Local Command-Line Utilities (CAPEC-ID 9) XSS in IMG Tags (CAPEC-ID 91)