Vulnerabilities > CVE-2021-34812 - Unspecified vulnerability in Synology Calendar

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

synology

NVD

Published: 2021-06-18

Updated: 2024-11-21

Summary

Use of hard-coded credentials vulnerability in php component in Synology Calendar before 2.4.0-0761 allows remote attackers to obtain sensitive information via unspecified vectors.

Vulnerable Configurations

Part	Description	Count
Application	Synology Synology Calendar 1.0.0-0121 Synology Calendar 1.0.2-0131 Synology Calendar 1.0.3-0132 Synology Calendar 1.1.0-0146 Synology Calendar 2.0.0-0241 Synology Calendar 2.0.1-0242 Synology Calendar 2.1.0-0425 Synology Calendar 2.1.1-0502 Synology Calendar 2.1.2-0511 Synology Calendar 2.2.1-0518 Synology Calendar 2.2.2-0532 Synology Calendar 2.2.3-0534 Synology Calendar 2.3.0-0615 Synology Calendar 2.3.1-0617 Synology Calendar 2.3.2-0619 Synology Calendar 2.3.3-0620	16

Summary

Vulnerable Configurations

References