It is also possible to obtain SYSTEM privileges, access the storage of other users and the storage of the root account via unspecified vectors. It is also possible to obtain SYSTEM privileges, access the storage of other users and the storage of the root account via unspecified vectors. CVE-2018-1789 Affected products Synology DiskStation Manager before 7.0.1-42218-2
How to resolve the issue? Synology strongly recommends installing the latest version of DSM available via Synology website or download upgrade package from the official download page of Synology. In case you cannot upgrade your DSM to the latest version or cannot upgrade your system for any reason, we recommend installing the latest version of uTorrent. CVE-2018-1790 Affected products Synology DiskStation Manager before 7.0.1-42218-2
How to resolve the issue? Synology strongly recommends installing the latest version of DSM available via Synology website or download upgrade package from the official download page of Synology. In case you cannot upgrade your DSM to the latest version or cannot upgrade your system for any reason, we recommend installing the latest version of uTorrent. CVE-2018-1791 Affected products Synology DiskStation Manager before 7.0.1-42218-2
How to resolve the issue? Synology strongly recommends installing the latest version of DSM available via Synology website or download upgrade package from the official download page of Synology. In case you cannot upgrade
QnAP
NAS devices
It is also possible to access other users' files, including root account's storage.
It is also possible to access other users' files, including root account's storage.
Timeline
Published on: 02/07/2022 02:15:00 UTC
Last modified on: 02/10/2022 17:10:00 UTC