CVE-2025-66593

Summary

An origin validation error vulnerability in Synology Assistant before 7.0.6-50085 allows local users to write arbitrary files with restricted content and conduct denial-of-service during installation.

Affected Software

VendorProductVersion RangeStatus
SynologySynology Assistant* < 7.0.6-50085affected

Weaknesses

  • CWE-346: Origin Validation Error

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References