CVE-2018-13298

Summary

Channel accessible by non-endpoint vulnerability in privacy page in Synology Android Moments before 1.2.3-199 allows man-in-the-middle attackers to execute arbitrary code via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
SynologyAndroid Momentsunspecified < 1.2.3-199affected

Weaknesses

  • CWE-300: Channel Accessible by Non-Endpoint (CWE-300)

ADP Enrichment

CVE Program Container

Additional References

References