CVE-2021-33182

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in PDF Viewer component in Synology DiskStation Manager (DSM) before 6.2.4-25553 allows remote authenticated users to read limited files via unspecified vectors.
References
Link Resource
https://www.synology.com/security/advisory/Synology_SA_21_03 Not Applicable Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:synology:diskstation_manager:*:*:*:*:*:*:*:*

History

09 Jun 2021, 19:37

Type Values Removed Values Added
CPE cpe:2.3:a:synology:diskstation_manager:*:*:*:*:*:*:*:*
CWE CWE-22
References (CONFIRM) https://www.synology.com/security/advisory/Synology_SA_21_03 - (CONFIRM) https://www.synology.com/security/advisory/Synology_SA_21_03 - Not Applicable, Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : 4.0
v3 : 4.3

01 Jun 2021, 14:15

Type Values Removed Values Added
New CVE

Information

Published : 2021-06-01 14:15

Updated : 2023-12-10 13:55


NVD link : CVE-2021-33182

Mitre link : CVE-2021-33182

CVE.ORG link : CVE-2021-33182


JSON object : View

Products Affected

synology

  • diskstation_manager
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')