CVE-2021-27646

Summary

Use After Free vulnerability in iscsi_snapshot_comm_core in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to execute arbitrary code via crafted web requests.

Affected Software

VendorProductVersion RangeStatus
SynologySynology DiskStation Manager (DSM)unspecified < 6.2.3-25426-3affected

Weaknesses

  • CWE-416: CWE-416: Use After Free

ADP Enrichment

CVE Program Container

Additional References

References