How severe is CVE-2021-26569?

CVE-2021-26569 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2021-26569

Name: diskstation_manager
Author: synology

9.8CRITICAL

Race Condition within a Thread vulnerability in iscsi_snapshot_comm_core in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to execute arbitrary code via crafted web re

Publicado: 3/12/2021Actualizado: 1/14/2025

Descripción

Race Condition within a Thread vulnerability in iscsi_snapshot_comm_core in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to execute arbitrary code via crafted web requests.

Análisis IAImpulsado por IA

Productos Afectados

synologydiskstation_manager

Referencias

https://www.synology.com/security/advisory/Synology_SA_20_26
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-338/
Third Party AdvisoryVDB Entry
https://www.synology.com/security/advisory/Synology_SA_20_26
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-21-338/
Third Party AdvisoryVDB Entry