Security Advisory

CVE-2024-53281

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-12-09 03:30:21

Last updated 2025-08-01 05:27:09

Assigner synology

State PUBLISHED

Description

Improper neutralization of input during web page generation (Cross-site Scripting) vulnerability in Network WOL functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users to read or write specific files containing non-sensitive information and conduct limited denial-of-service attacks by injecting arbitrary web script or HTML.

← Browse all CVEs View on cve.org ↗