CVE-2017-16766

Published: 2017-12-22T14:29Z

Last Modified: 2025-01-14T19:29Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An improper access control vulnerability in synodsmnotify in Synology DiskStation Manager (DSM) before 6.1.4-15217 and before 6.0.3-8754-6 allows local users to inject arbitrary web script or HTML via the -fn option. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt