Synology Chat CVE-2017-11148 Server Side Request Forgery Security Bypass Vulnerability

Bugtraq ID: 100310
Class: Design Error
CVE: CVE-2017-11148
Remote: Yes
Local: No
Published: Aug 10 2017 12:00AM
Updated: Aug 10 2017 12:00AM
Credit: Synology
Vulnerable: Synology Chat 1.0.2-0159
Synology Chat 1.0.1-0158
Synology Chat 1.0.0-0127
Synology Chat 1.0.0-0126
Not Vulnerable: Synology Chat 1.1.0-0806


 

Privacy Statement
Copyright 2010, SecurityFocus