CVE-2018-13290

Summary

Information exposure vulnerability in SYNO.Core.ACL in Synology Router Manager (SRM) before 1.1.7-6941-2 allows remote authenticated users to determine the existence of files or obtain sensitive information of files via the file_path parameter.

Affected Software

VendorProductVersion RangeStatus
SynologySynology Router Manager (SRM)unspecified < 1.1.7-6941-2affected

Weaknesses

  • CWE-200: Information Exposure (CWE-200)

ADP Enrichment

CVE Program Container

Additional References

References