📦 Router Manager
by Synology
🔍 What is Router Manager?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This CVE describes an OS command injection vulnerability in Synology Router Manager's CGI component that allows remote attackers to execute arbitrary commands on affected routers. Attackers can potent...
CVE-2020-27654 is an improper access control vulnerability in the lbd service of Synology Router Manager (SRM) that allows remote attackers to execute arbitrary commands without authentication. Attack...
CVE-2018-1160 is a critical vulnerability in Netatalk that allows remote unauthenticated attackers to execute arbitrary code due to an out-of-bounds write in dsi_opensess.c. It affects systems running...
This vulnerability in Synology's portenable CGI allows authenticated remote users to query the status of installed packages. This information disclosure could help attackers map the system for further...
This CVE describes an OS command injection vulnerability in Synology Router Manager's DDNS functionality. Authenticated administrators can execute arbitrary commands on the router, potentially comprom...
This path traversal vulnerability in Synology Router Manager allows authenticated remote attackers to delete arbitrary files on affected systems by exploiting improper path validation in the OTP reset...
This vulnerability allows man-in-the-middle attackers to execute arbitrary code on Synology routers by exploiting AirPrint functionality that downloads code without proper integrity checks. It affects...
This CVE describes an OS command injection vulnerability in Synology Router Manager's DHCP client functionality. Attackers with man-in-the-middle position can execute arbitrary commands on affected ro...
This vulnerability in Synology FileStation's thumb.cgi component allows authenticated users to read and write image files they shouldn't have access to. It affects Synology NAS devices running DSM wit...
This vulnerability allows remote authenticated users to read file metadata and path information through a FileStation CGI component. It affects Synology NAS devices running vulnerable versions of DSM....
This vulnerability allows authenticated users to read .srt subtitle files on Synology Video Station systems. It affects Synology Video Station installations where users have authenticated access to th...
This is a stored cross-site scripting (XSS) vulnerability in Synology Router Manager's NTP Region functionality. Authenticated administrators can inject malicious scripts that execute when other users...
This is a stored cross-site scripting (XSS) vulnerability in Synology Router Manager's WiFi Connect Setting functionality. It allows authenticated administrators to inject malicious scripts that can r...
This is a stored cross-site scripting (XSS) vulnerability in Synology Router Manager's network center policy route functionality. It allows authenticated administrators to inject malicious scripts tha...
This is a stored cross-site scripting (XSS) vulnerability in Synology Router Manager's WiFi Connect MAC Filter functionality. It allows authenticated administrators to inject malicious scripts that ca...
This vulnerability allows man-in-the-middle attackers to bypass firewall protections and access sensitive internal network resources on Synology routers. It affects Synology Router Manager (SRM) insta...