Security Alert (A24-01-25): Multiple Vulnerabilities in Synology DiskStation Manager


 

Published on: 29 January 2024

  
  

Description:

Synology has published security advisories to address multiple vulnerabilities in various versions of DiskStation Manager (DSM). The list of patches can be found at the following URLs:
https://www.synology.com/en-us/security/advisory/Synology_SA_24_01
https://www.synology.com/en-us/security/advisory/Synology_SA_24_02

 

Affected Systems:

  • Synology DiskStation Manager (DSM)

 

Impact:

Successful exploitation of the vulnerabilities could lead to remote code execution or spoofing on an affected system.

 

Recommendation:

Patches for affected systems are available. System administrators of affected systems should follow the recommendations provided by the vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://www.synology.com/en-us/security/advisory/Synology_SA_24_01
  • https://www.synology.com/en-us/security/advisory/Synology_SA_24_02
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0854


Tag: DSM
Tags