CVE-2018-13286

Publication date

2019-04-01 14:26:30

Family

synology

State

PUBLISHED

Description

Incorrect default permissions vulnerability in synouser.conf in Synology Diskstation Manager (DSM) before 6.2-23739-1 allows remote authenticated users to obtain sensitive information via the world readable configuration.