CVE-2023-41741

5.3MEDIUM

Key Information

Vendor
Synology
Status
Synology Router Manager (srm)
Vendor
CVE Published:
31 August 2023

Summary

Exposure of sensitive information to an unauthorized actor vulnerability in cgi component in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote attackers to obtain sensitive information via unspecified vectors.

Affected Version(s)

Synology Router Manager (SRM) <= 1.3

Synology Router Manager (SRM) < 1.3.1-9346-6

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Risk change from: 7.5 to: 5.3 - (MEDIUM)

  • Vulnerability Reserved.

  • Vulnerability published.

Collectors

NVD DatabaseMitre Database

Credit

Claroty Research - Vera Mens, Uri Katz, Noam Moshe, Sharon Brizinov
.