Weak Permissions in Synology Download Station Allow Remote Code Execution
CVE-2017-11156

7.8HIGH

Key Information:

Vendor: Synology
Status: Synology Download Station
Vendor: CVE Published:; 14 August 2017

What is CVE-2017-11156?

Synology Download Station versions 3.8.x prior to 3.8.5-3475 and 3.x prior to 3.5-2984 exhibit a security flaw due to weak file permissions set to 0777 for the ui/dlm/btsearch directory. This misconfiguration permits remote authenticated users to upload executable files, potentially allowing them to execute arbitrary code on the server through various unspecified vectors. Users are strongly advised to upgrade to the latest versions to mitigate the risks associated with this vulnerability.

Affected Version(s)

Synology Download Station 3.8.x before 3.8.5-3475 and 3.x before 3.5-2984

References

https://www.synology.com/en-global/support/security/Synol...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 14, 2017
Vulnerability Reserved
Jul 10, 2017