Security Advisory

CVE-2022-27613

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-28 06:35:11

Last updated 2024-09-17 01:40:51

Assigner synology

State PUBLISHED

Description

Improper neutralization of special elements used in an SQL command (SQL Injection) vulnerability in webapi component in Synology CardDAV Server before 6.0.10-0153 allows remote authenticated users to inject SQL commands via unspecified vectors.

← Browse all CVEs View on cve.org ↗