The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of DiskStation Manager

ISC BIND: privilege escalation via Update-policy Rules
An attacker can bypass restrictions via Update-policy Rules of ISC BIND, in order to escalate his privileges...
6350241, CERTFR-2020-AVI-523, CVE-2020-8624, DSA-4752-1, K91090139, openSUSE-SU-2020:1699-1, openSUSE-SU-2020:1701-1, RHSA-2020:4500-01, RHSA-2020:5011-01, RHSA-2020:5203-01, SSA:2020-234-01, SUSE-SU-2020:2914-1, Synology-SA-20:19, USN-4468-1, USN-4468-2, VIGILANCE-VUL-33130
Synology DSM: Man-in-the-Middle
An attacker can act as a Man-in-the-Middle on Synology DSM, in order to read or write data in the session...
CVE-2020-27648, CVE-2020-27650, CVE-2020-27652, CVE-2020-27656, Synology-SA-20:18, VIGILANCE-VUL-32861
Synology DiskStation Manager: multiple vulnerabilities
An attacker can use several vulnerabilities of Synology DiskStation Manager...
Synology-SA-20:06, VIGILANCE-VUL-32159
PHP: memory corruption via env_path_info
An attacker can trigger a memory corruption via env_path_info() of PHP, in order to trigger a denial of service, and possibly to run code...
1172398, CERTFR-2019-AVI-534, CVE-2019-11043, DLA-1970-1, DSA-4552-1, DSA-4553-1, FEDORA-2019-187ae3128d, FEDORA-2019-4adc49a476, FEDORA-2019-7bb07c3b02, openSUSE-SU-2019:2441-1, openSUSE-SU-2019:2457-1, RHSA-2019:3286-01, RHSA-2019:3287-01, RHSA-2019:3299-01, RHSA-2019:3300-01, RHSA-2019:3724-01, RHSA-2019:3735-01, RHSA-2019:3736-01, RHSA-2020:0322-01, RHSA-2020:2835-01, SUSE-SU-2019:2809-1, SUSE-SU-2019:2819-1, SUSE-SU-2019:2909-1, SUSE-SU-2020:0522-1, Synology-SA-19:36, USN-4166-1, USN-4166-2, VIGILANCE-VUL-30713
ppp: buffer overflow via eap_request
An attacker can trigger a buffer overflow via eap_request() of ppp, in order to trigger a denial of service, and possibly to run code...
CERTFR-2020-AVI-494, CVE-2020-8597, DLA-2097-1, DSA-4632-1, openSUSE-SU-2020:0286-1, RHSA-2020:0630-01, RHSA-2020:0631-01, RHSA-2020:0633-01, RHSA-2020:0634-01, sk165875, SSA:2020-064-01, SSA-809841, SUSE-SU-2020:0489-1, SUSE-SU-2020:14292-1, Synology-SA-20:02, USN-4288-1, USN-4288-2, VIGILANCE-VUL-31562, VU#782301
Samba: three vulnerabilities
An attacker can use several vulnerabilities of Samba...
CERTFR-2020-AVI-048, CVE-2019-14902, CVE-2019-14907, CVE-2019-19344, FEDORA-2020-6bd386c7eb, FEDORA-2020-f92cd0e72b, HPESBUX04029, openSUSE-SU-2020:0122-1, RHSA-2020:1878-01, RHSA-2020:3981-01, SUSE-SU-2020:0152-1, SUSE-SU-2020:0223-1, SUSE-SU-2020:0224-1, SUSE-SU-2020:0233-1, SUSE-SU-2020:2673-1, USN-4244-1, VIGILANCE-VUL-31386
Drupal Core: four vulnerabilities
An attacker can use several vulnerabilities of Drupal Core...
1282408, CERTFR-2019-AVI-645, DRUPAL-SA-CORE-2019-009, DRUPAL-SA-CORE-2019-010, DRUPAL-SA-CORE-2019-011, DRUPAL-SA-CORE-2019-012, Synology-SA-19:43, VIGILANCE-VUL-31189
Intel processors: privilege escalation via Virtualized Environment Page Fault
An attacker can bypass restrictions via Virtualized Environment Page Fault of Intel, in order to escalate his privileges...
CERTFR-2020-AVI-618, CVE-2019-14607, HPESBHF03974, INTEL-SA-00317, K29100014, STORM-2019-026, Synology-SA-19:42, VIGILANCE-VUL-31161
WordPress Core: five vulnerabilities
An attacker can use several vulnerabilities of WordPress Core...
CERTFR-2019-AVI-631, CVE-2019-16773-REJECT, CVE-2019-16780, CVE-2019-16781, CVE-2019-16788-REJECT, CVE-2019-20041, CVE-2019-20042, CVE-2019-20043, DLA-2067-1, DSA-4599-1, DSA-4677-1, Synology-SA-19:41, VIGILANCE-VUL-31153
Samba: privilege escalation via DelegationNotAllowed S4U2Self
An attacker can bypass restrictions via DelegationNotAllowed S4U2Self of Samba, in order to escalate his privileges...
CERTFR-2019-AVI-614, CVE-2019-14870, FEDORA-2019-11dddb785b, FEDORA-2019-be98a08835, openSUSE-SU-2019:2700-1, SUSE-SU-2019:3319-1, SUSE-SU-2020:2673-1, Synology-SA-19:40, USN-4217-1, USN-4217-2, VIGILANCE-VUL-31100
Our database contains other pages. You can request a free trial to read them.

Display information about DiskStation Manager: