#VU1062 Privilege escalation in Synology NAS Servers
Vulnerability identifier: #VU1062
Vulnerability risk: Low
CVSSv3.1: 8.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-255
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
Synology NAS Servers
Hardware solutions /
Routers & switches, VoIP, GSM, etc
Vendor: Synology Inc.
Description
The vulnerability allows a remote unauthenticated user to bypass security limitations and gain elevated privileges on the target system.
The weakness exists due to improper protection of credentials. By accessing the server with default credentials, attacker can bypass security limitations and increase his privileges.
Successful exploitation of the vulnerability results in privilege escalation and full access to the vulnerable system.
Mitigation
Update to version 5.2-5644 -1.
Vulnerable software versions
Synology NAS Servers: 3.1 - 5.2-5644-1
External links
http://www.kb.cert.org/vuls/id/404187
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
