Vulnerabilities > Synology > Diskstation Manager Unified Controller > Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2021-02-26	CVE-2021-26565	Cleartext Transmission of Sensitive Information vulnerability in Synology products Cleartext transmission of sensitive information vulnerability in synorelayd in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows man-in-the-middle attackers to obtain sensitive information via an HTTP session. network high complexity synology CWE-319	5.9
2021-02-26	CVE-2021-26563	Unspecified vulnerability in Synology products Incorrect authorization vulnerability in synoagentregisterd in Synology DiskStation Manager (DSM) before 6.2.4-25553 allows local users to execute arbitrary code via unspecified vectors. local low complexity synology	6.7

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.