Out-of-Bounds Read Vulnerability in Out-of-Band Management: Disclosure of Sensitive Information

Out-of-Bounds Read Vulnerability in Out-of-Band Management: Disclosure of Sensitive Information

CVE-2022-3576 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

A vulnerability regarding out-of-bounds read is found in the session processing functionality of Out-of-Band (OOB) Management. This allows remote attackers to obtain sensitive information via unspecified vectors. The following models with Synology DiskStation Manager (DSM) versions before 7.1.1-42962-2 may be affected: DS3622xs+, FS3410, and HD6500.

Learn more about our Web Application Penetration Testing UK.