Vulnerabilities (CVE)

Filtered by vendor Synology Subscribe

Filtered by product Ssl Vpn Client

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-5748	1 Synology	1 Ssl Vpn Client	2023-12-10	N/A	5.5 MEDIUM
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology SSL VPN Client before 1.4.7-0687 allows local users to conduct denial-of-service attacks via unspecified vectors.
CVE-2018-13283	1 Synology	1 Ssl Vpn Client	2023-12-10	5.8 MEDIUM	7.4 HIGH
Lack of administrator control over security vulnerability in client.cgi in Synology SSL VPN Client before 1.2.5-0226 allows remote attackers to conduct man-in-the-middle attacks via the (1) command, (2) hostname, or (3) port parameter.
CVE-2018-8929	1 Synology	1 Ssl Vpn Client	2023-12-10	6.8 MEDIUM	8.1 HIGH
Improper restriction of communication channel to intended endpoints vulnerability in HTTP daemon in Synology SSL VPN Client before 1.2.4-0224 allows remote attackers to conduct man-in-the-middle attacks via a crafted payload.