Jump to content

XPEnology Community

Existing user? Sign In
Sign In

Remember me Not recommended on shared computers

Forgot your password?
Sign Up

Readers News & Rumours

Vulnerability in DSM 6.2: Synology-SA-20:26

By jensmander
November 27, 2020 in Readers News & Rumours

Share

https://xpenology.com/forum/topic/37709-vulnerability-in-dsm-62-synology-sa-2026/

Recommended Posts

Guru

jensmander

Posted November 27, 2020

#1

Posted November 27, 2020

This affects users who have their NAS exposed to the internet (NAT, open ports). It‘s fixed in DSM 6.2.3-25426-3 .

Description

Multiple vulnerabilities allow remote attackers to execute arbitrary code via a susceptible version of DiskStation Manager (DSM).

https://www.synology.com/en-global/security/advisory/Synology_SA_20_26

Quote

Mincemeat

Junior Member

Mincemeat

Posted November 27, 2020

#2

Posted November 27, 2020

Got a 6.2.2-24922u6 connected over ics in win10 and it seems ports 5k and 22 are closed from outside so it should be ok?

Thats pretty bad, out of the blue multiple remote vulnerabilities.

Quote

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest

Reply to this topic...

× Pasted as rich text. Restore formatting

Only 75 emoji are allowed.

× Your link has been automatically embedded. Display as a link instead

× Your previous content has been restored. Clear editor

× You cannot paste images directly. Upload or insert images from URL.

Insert image from URL

×

Share

https://xpenology.com/forum/topic/37709-vulnerability-in-dsm-62-synology-sa-2026/

Go to topic listing

×

×

Create New...

IPS spam blocked by CleanTalk.