CVE-2025-66592

Summary

An origin validation error vulnerability in Synology Active Backup for Business Agent before 3.1.0-4967 allows local users to write arbitrary files with restricted content and conduct denial-of-service during installation.

Affected Software

VendorProductVersion RangeStatus
SynologySynology Active Backup for Business Agent* < 3.1.0-4967affected

Weaknesses

  • CWE-346: Origin Validation Error

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References