Vulnerabilities > CVE-2017-15886 - Server-Side Request Forgery (SSRF) vulnerability in Synology Chat
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Server-side request forgery (SSRF) vulnerability in Link Preview in Synology Chat before 2.0.0-1124 allows remote authenticated users to download arbitrary local files via a crafted URI.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 6 |