Information Exposure Vulnerability in Synology Application Service
CVE-2018-13295
4.3MEDIUM
What is CVE-2018-13295?
An information exposure vulnerability exists in the Synology Application Service, allowing remote authenticated users to retrieve sensitive system information through manipulation of the version parameter. This flaw can lead to unauthorized access to critical data, urging users to update their software to mitigate the risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
Application Service < 1.5.4-0320
References
CVSS V3.1
Score:
4.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved