Security Advisory

CVE-2024-11398

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-12-04 06:59:56

Last updated 2024-12-04 14:09:11

Assigner synology

State PUBLISHED

Description

Improper limitation of a pathname to a restricted directory (Path Traversal) vulnerability in OTP reset functionality in Synology Router Manager (SRM) before 1.3.1-9346-9 allows remote authenticated users to delete arbitrary files via unspecified vectors.

← Browse all CVEs View on cve.org ↗