Remote Authenticated Users Can Access Limited Alerting Functions via Unspecified Vectors
CVE-2023-52943
Currently unrated
Summary
Incorrect authorization vulnerability in Alert.Setting webapi component in Synology Surveillance Station before 9.2.0-11289 and 9.2.0-9289 allows remote authenticated users to to perform limited actions on the alerting function via unspecified vectors.
References
Timeline
Vulnerability published
Collectors
NVD Database