Path Traversal Vulnerability in PDF Viewer of Synology DiskStation Manager

CVE-2021-33182

What is CVE-2021-33182?

The PDF Viewer component in Synology DiskStation Manager (DSM) versions prior to 6.2.4-25553 is susceptible to a path traversal vulnerability. This issue permits remote authenticated users to gain unauthorized access to restricted files within the system, exploiting improper path limitations. Attackers might leverage this flaw to read sensitive information through unspecified vectors, raising serious concerns about data integrity and security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References