CVE Daily

CVE-2018-8919

Information exposure vulnerability in SYNO.Core.Desktop.SessionData in Synology ...

High CVSS 8.3

Overview

Information exposure vulnerability in SYNO.Core.Desktop.SessionData in Synology DiskStation Manager (DSM) before 6.1.6-15266 allows remote attackers to steal credentials via unspecified vectors.

CWE: CWE-200 Published: 2018-12-24T15:29:00.377
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 8.3 (HIGH)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags