An improper access control vulnerability in synodsmnotify in Synology DiskStation Manager (DSM) prior to 6.1.4-15217 and prior to 6.0.3-8754-6 allows local users to inject arbitrary web script or HTML via the -fn option.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
synology diskstation manager |