The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of DSM

ISC BIND: information disclosure via DLZ Zone Transfer
An attacker can bypass access restrictions to data via DLZ Zone Transfer of ISC BIND, in order to obtain sensitive information...
bulletinapr2019, CERTFR-2019-AVI-242, CVE-2019-6465, DLA-1697-1, DSA-4440-1, ibm10876698, K00040234, K01713115, K25244852, openSUSE-SU-2019:1532-1, openSUSE-SU-2019:1533-1, RHSA-2019:3552-01, RHSA-2020:1061-01, SUSE-SU-2019:1407-1, SUSE-SU-2019:14074-1, SUSE-SU-2019:1449-1, SUSE-SU-2019:2502-1, Synology-SA-19:10, USN-3893-1, USN-3893-2, VIGILANCE-VUL-28584
ISC BIND: assertion error via Managed-keys Trust Anchor Rolls Over
An attacker can force an assertion error via Managed-keys Trust Anchor Rolls Over of ISC BIND, in order to trigger a denial of service...
bulletinapr2019, CERTFR-2019-AVI-242, CVE-2018-5745, DLA-1697-1, DSA-2020-030, DSA-4440-1, ibm10876698, K00040234, K01713115, K25244852, openSUSE-SU-2019:1532-1, openSUSE-SU-2019:1533-1, RHSA-2019:3552-01, RHSA-2020:1061-01, SUSE-SU-2019:1407-1, SUSE-SU-2019:14074-1, SUSE-SU-2019:1449-1, SUSE-SU-2019:2502-1, Synology-SA-19:10, USN-3893-1, USN-3893-2, VIGILANCE-VUL-28583
ISC BIND: memory leak via EDNS Options
An attacker can create a memory leak via EDNS Options of ISC BIND, in order to trigger a denial of service...
bulletinapr2019, CERTFR-2019-AVI-076, CERTFR-2019-AVI-242, CVE-2018-5744, ibm10876698, K00040234, K01713115, K25244852, Synology-SA-19:10, USN-3893-1, USN-3893-2, VIGILANCE-VUL-28582
Synology Note Station: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Synology Note Station, in order to run JavaScript code in the context of the web site...
CVE-2019-11827, Synology-SA-19:08, VIGILANCE-VUL-28541
runc: code execution via FS Descriptors Container Escape
An attacker can use a vulnerability via FS Descriptors Container Escape of runc, in order to run code...
CVE-2019-5736, FEDORA-2019-2baa1f7b19, FEDORA-2019-352d4b9cd8, FEDORA-2019-3f19f13ecd, FEDORA-2019-4dc1e39b34, FEDORA-2019-6174b47003, FEDORA-2019-829524f28f, FEDORA-2019-963ea958f9, FEDORA-2019-a5f616808e, FEDORA-2019-bc70b381ad, FEDORA-2019-c1dac1b3b8, FEDORA-2019-df2e68aa6b, FEDORA-2019-f455ef79b8, openSUSE-SU-2019:0170-1, openSUSE-SU-2019:0201-1, openSUSE-SU-2019:0208-1, openSUSE-SU-2019:0252-1, openSUSE-SU-2019:0295-1, openSUSE-SU-2019:1079-1, openSUSE-SU-2019:1227-1, openSUSE-SU-2019:1230-1, openSUSE-SU-2019:1275-1, openSUSE-SU-2019:1444-1, openSUSE-SU-2019:1481-1, openSUSE-SU-2019:1499-1, openSUSE-SU-2019:1506-1, openSUSE-SU-2019:2021-1, openSUSE-SU-2019:2245-1, openSUSE-SU-2019:2286-1, RHSA-2019:0303-01, RHSA-2019:0304-01, SSA:2019-043-01, SUSE-SU-2019:0362-1, SUSE-SU-2019:0495-1, SUSE-SU-2019:0573-1, SUSE-SU-2019:1234-1, SUSE-SU-2019:1234-2, SUSE-SU-2019:1264-1, SUSE-SU-2019:2117-1, SUSE-SU-2019:2119-1, Synology-SA-19:06, USN-4048-1, VIGILANCE-VUL-28477
Synology DSM Moments: file upload
An attacker can upload a malicious file on Synology DSM Moments, in order for example to upload a Trojan...
CVE-2019-11826, Synology-SA-19:05, VIGILANCE-VUL-28295
Synology DSM Calendar: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Synology DSM Calendar, in order to run JavaScript code in the context of the web site...
CVE-2019-11825, Synology-SA-19:04, VIGILANCE-VUL-28278
Synology DSM Surveillance Station: code execution
An attacker can use a vulnerability of Synology DSM Surveillance Station, in order to run code...
Synology-SA-19:03, VIGILANCE-VUL-28277
Synology DSM VS960HD: code execution
An attacker can use a vulnerability of Synology DSM VS960HD, in order to run code...
Synology-SA-19:02, VIGILANCE-VUL-28276
OpenSSH scp, PuTTY PSCP: spoofing via Scp Client ANSI Codes stderr File Hidding
An attacker can spoof displayed filenames on the scp client of OpenSSH and PuTTY, in order to deceive the victim...
bulletinjan2019, CVE-2019-6110, ibm10731015, K11315080, K21350967, K42531048, openSUSE-SU-2019:0091-1, openSUSE-SU-2019:0093-1, SUSE-SU-2019:0125-1, SUSE-SU-2019:0126-1, SUSE-SU-2019:0132-1, SUSE-SU-2019:13931-1, VIGILANCE-VUL-28262
Our database contains other pages. You can request a free trial to read them.

Display information about DSM: