CVE-2020-27649

Publication date

2020-10-29 08:55:20

Family

synology

State

PUBLISHED

Description

Improper certificate validation vulnerability in OpenVPN client in Synology Router Manager (SRM) before 1.2.4-8081 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.