Open Redirect Vulnerability in Synology DiskStation Manager (DSM) Allows Phishing Attacks via Untrusted Site

CVE-2024-0854 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

URL redirection to untrusted site ('Open Redirect') vulnerability in file access component in Synology DiskStation Manager (DSM) before 7.2.1-69057-2 allows remote authenticated users to conduct phishing attacks via unspecified vectors.

Learn more about our Phishing Simulation.