Synology Router Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Synology Router Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (59)
CVE-2020-27654 — CVSS 9.8 (critical): Improper access control vulnerability in lbd in Synology Router Manager (SRM) before 1.2.4-8081 allows remote attackers to execute…
CVE-2017-14491 — CVSS 9.8 (critical): Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code…
CVE-2018-1160 — CVSS 9.8 (critical): Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker…
CVE-2023-32956 — CVSS 9.8 (critical): Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in CGI component in Synology…
CVE-2019-11823 — CVSS 8.6 (high): CRLF injection vulnerability in Network Center in Synology Router Manager (SRM) before 1.2.3-8017-2 allows remote attackers to cause a…
CVE-2020-27649 — CVSS 8.3 (high): Improper certificate validation vulnerability in OpenVPN client in Synology Router Manager (SRM) before 1.2.4-8081 allows man-in-the-middle…
CVE-2020-27653 — CVSS 8.3 (high): Algorithm downgrade vulnerability in QuickConnect in Synology Router Manager (SRM) before 1.2.4-8081 allows man-in-the-middle attackers to…
CVE-2024-11398 — CVSS 8.1 (high): Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in OTP reset functionality in Synology Router…
CVE-2019-9498 — CVSS 8.1 (high): The implementations of EAP-PWD in hostapd EAP Server, when built against a crypto library missing explicit validation on imported elements…
CVE-2023-32955 — CVSS 8.1 (high): Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in DHCP Client Functionality in…
CVE-2019-9499 — CVSS 8.1 (high): The implementations of EAP-PWD in wpa_supplicant EAP Peer, when built against a crypto library missing explicit validation on imported…
CVE-2019-9501 — CVSS 7.9 (high): The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. By supplying a vendor information element with a data length larger…
CVE-2019-9502 — CVSS 7.9 (high): The Broadcom wl WiFi driver is vulnerable to a heap buffer overflow. If the vendor information element data length is larger than 164…
CVE-2018-7185 — CVSS 7.5 (high): The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending…
CVE-2022-43932 — CVSS 7.5 (high): Improper neutralization of special elements in output used by a downstream component ('Injection') vulnerability in CGI component in…
CVE-2018-13285 — CVSS 7.5 (high): Command injection vulnerability in ftpd in Synology Router Manager (SRM) before 1.1.7-6941-1 allows remote authenticated users to execute…
CVE-2024-39348 — CVSS 7.5 (high): Download of code without integrity check vulnerability in AirPrint functionality in Synology Router Manager (SRM) before 1.2.5-8227-11 and…
CVE-2018-7184 — CVSS 7.5 (high): ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a…
CVE-2025-29846 — CVSS 7.2 (high): A vulnerability in portenable cgi allows remote authenticated users to get the status of installed packages.
CVE-2017-12078 — CVSS 7.2 (high): Command injection vulnerability in EZ-Internet in Synology Router Manager (SRM) before 1.1.6-6931 allows remote authenticated users to…
CVE-2023-41738 — CVSS 7.2 (high): Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in Directory Domain Functionality…
CVE-2024-53286 — CVSS 7.2 (high): Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in DDNS Record functionality in…
CVE-2020-27658 — CVSS 7.1 (high): Synology Router Manager (SRM) before 1.2.4-8081 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which…
CVE-2019-19344 — CVSS 6.5 (medium): There is a use-after-free issue in all samba 4.9.x versions before 4.9.18, all samba 4.10.x versions before 4.10.12 and all samba 4.11.x…
CVE-2019-14907 — CVSS 6.5 (medium): All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where if it is set with "log level =…
CVE-2018-8918 — CVSS 6.5 (medium): Cross-site scripting (XSS) vulnerability in info.cgi in Synology Router Manager (SRM) before 1.1.7-6941 allows remote attackers to inject…
CVE-2017-15895 — CVSS 6.5 (medium): Directory traversal vulnerability in the SYNO.FileStation.Extract in Synology Router Manager (SRM) before 1.1.5-6542-4 allows remote…
CVE-2018-13287 — CVSS 6.5 (medium): Incorrect default permissions vulnerability in synouser.conf in Synology Router Manager (SRM) before 1.1.7-6941-1 allows remote…
CVE-2020-27655 — CVSS 6.5 (medium): Improper access control vulnerability in Synology Router Manager (SRM) before 1.2.4-8081 allows remote attackers to access restricted…
CVE-2020-27657 — CVSS 6.5 (medium): Cleartext transmission of sensitive information vulnerability in DDNS in Synology Router Manager (SRM) before 1.2.4-8081 allows…
CVE-2023-0142 — CVSS 6.5 (medium): Uncontrolled search path element vulnerability in Backup Management functionality in Synology DiskStation Manager (DSM) before…
CVE-2023-0077 — CVSS 6.5 (medium): Integer overflow or wraparound vulnerability in CGI component in Synology Router Manager (SRM) before 1.2.5-8227-6 and 1.3.1-9346-3 allows…
CVE-2019-3870 — CVSS 6.1 (medium): A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10.2. During the creation of a new Samba AD…
CVE-2019-9494 — CVSS 5.9 (medium): The implementations of SAE in hostapd and wpa_supplicant are vulnerable to side channel attacks as a result of observable timing…
CVE-2023-2729 — CVSS 5.9 (medium): Use of insufficiently random values vulnerability in User Management Functionality in Synology DiskStation Manager (DSM) before 7.2-64561…
CVE-2024-39347 — CVSS 5.9 (medium): Incorrect default permissions vulnerability in firewall functionality in Synology Router Manager (SRM) before 1.2.5-8227-11 and…
CVE-2024-53279 — CVSS 5.9 (medium): Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in file station functionality in…
CVE-2024-53280 — CVSS 5.9 (medium): Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in network center policy route…
CVE-2024-53281 — CVSS 5.9 (medium): Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in Network WOL functionality in Synology…
CVE-2024-53282 — CVSS 5.9 (medium): Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in WiFi Connect MAC Filter functionality…
CVE-2024-53283 — CVSS 5.9 (medium): Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in Router Port Forward functionality in…
CVE-2024-53284 — CVSS 5.9 (medium): Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in WiFi Connect Setting functionality in…
CVE-2024-53285 — CVSS 5.9 (medium): Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in DDNS Record functionality in Synology…
CVE-2024-53287 — CVSS 5.9 (medium): Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in VPN Setting functionality in Synology…
CVE-2024-53288 — CVSS 5.9 (medium): Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in NTP Region functionality in Synology…
CVE-2020-27651 — CVSS 5.8 (medium): Synology Router Manager (SRM) before 1.2.4-8081 does not set the Secure flag for the session cookie in an HTTPS session, which makes it…
CVE-2017-5753 — CVSS 5.6 (medium): Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an…
CVE-2025-29843 — CVSS 5.4 (medium): A vulnerability in FileStation thumb cgi allows remote authenticated users to read/write image files.
CVE-2018-7170 — CVSS 5.3 (medium): ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create…
CVE-2018-13289 — CVSS 5.3 (medium): Information exposure vulnerability in SYNO.FolderSharing.List in Synology Router Manager (SRM) before 1.1.7-6941-2 allows remote attackers…
CVE-2023-41740 — CVSS 5.3 (medium): Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in cgi component in Synology Router Manager…
CVE-2023-41741 — CVSS 5.3 (medium): Exposure of sensitive information to an unauthorized actor vulnerability in cgi component in Synology Router Manager (SRM) before…
CVE-2017-12077 — CVSS 4.9 (medium): Uncontrolled Resource Consumption vulnerability in SYNO.Core.PortForwarding.Rules in Synology Router Manager (SRM) before 1.1.4-6509 allows…
CVE-2023-41739 — CVSS 4.9 (medium): Uncontrolled resource consumption vulnerability in File Functionality in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote…
CVE-2025-29844 — CVSS 4.3 (medium): A vulnerability in FileStation file cgi allows remote authenticated users to read file metadata and path information.
CVE-2018-13292 — CVSS 4.3 (medium): Information exposure vulnerability in /usr/syno/etc/mount.conf in Synology Router Manager (SRM) before 1.1.7-6941-2 allows remote…
CVE-2018-13290 — CVSS 4.3 (medium): Information exposure vulnerability in SYNO.Core.ACL in Synology Router Manager (SRM) before 1.1.7-6941-2 allows remote authenticated users…
CVE-2019-9495 — CVSS 3.7 (low): The implementations of EAP-PWD in hostapd and wpa_supplicant are vulnerable to side-channel attacks as a result of cache access patterns…