Security Advisory

CVE-2022-27610

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-27 08:00:15

Last updated 2024-09-16 20:03:49

Assigner synology

State PUBLISHED

Description

Improper limitation of a pathname to a restricted directory (Path Traversal) vulnerability in webapi component in Synology DiskStation Manager (DSM) before 6.2.3-25423 allows remote authenticated users to delete arbitrary files via unspecified vectors.

← Browse all CVEs View on cve.org ↗