CVE-2018-13289

Summary

Information exposure vulnerability in SYNO.FolderSharing.List in Synology Router Manager (SRM) before 1.1.7-6941-2 allows remote attackers to obtain sensitive information via the (1) folder_path or (2) real_path parameter.

Affected Software

VendorProductVersion RangeStatus
SynologySynology Router Manager (SRM)unspecified < 1.1.7-6941-2affected

Weaknesses

  • CWE-200: Information Exposure (CWE-200)

ADP Enrichment

CVE Program Container

Additional References

References