Publish Time: 2023-03-30 16:17:07 UTC+8
Last Updated: 2023-10-04 18:16:36 UTC+8
Abstract
A vulnerability allows local users to conduct privilege escalation attacks via a susceptible version of Synology DiskStation Manager (DSM) and Synology Router Manager (SRM).
Affected Products
Product | Severity | Fixed Release Availability |
---|---|---|
DSM 7.1 | Low | Upgrade to 7.2.1-69057 or above. |
DSM 7.0 | Low | Will not fix |
DSM 6.2 | Low | Will not fix |
DSMUC 3.1 | Low | Will not fix |
SRM 1.3 | Low | Will not fix |
SRM 1.2 | Not affected | N/A |
VS Firmware 3.0 | Low | Will not fix |
Mitigation
None
Detail
Reference
Revision
Revision | Date | Description |
---|---|---|
1 | 2023-03-30 | Initial public release. |
2 | 2023-09-26 | Update for DSM 7.1 is now available in Affected Products. |