Vulnerabilities > CVE-2022-43749 - Unspecified vulnerability in Synology Presto File Server

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

synology

NVD

Published: 2022-10-26

Updated: 2024-11-21

Summary

Improper privilege management vulnerability in summary report management in Synology Presto File Server before 2.1.2-1601 allows remote authenticated users to bypass security constraint via unspecified vectors.

Vulnerable Configurations

Part	Description	Count
Application	Synology Synology Presto File Server 1.1.0-0101 Synology Presto File Server 1.1.1-0105 Synology Presto File Server 1.1.2-0109 Synology Presto File Server 1.2.0-0163 Synology Presto File Server 1.2.1-0165 Synology Presto File Server 1.3.0-0229 Synology Presto File Server 1.3.1-0235 Synology Presto File Server 2.0.0-0332 Synology Presto File Server 2.0.1-0335 Synology Presto File Server 2.1.0-0427 Synology Presto File Server 2.1.1-0583 Synology Presto File Server 2.1.1-1593 Synology Presto File Server 2.1.2-0601 Synology Presto File Server 2.1.2-1600	14

Summary

Vulnerable Configurations

References