GCVE - cpe:2.3:o:synology:router_manager:1.2.5-8227:update6:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:synology:router_manager:1.2.5-8227:update6:*:*:*:*:*:*

part: o version: 1.2.5-8227 update: update6

Vendor	Synology (`65464e9b-7339-559d-9719-837f074e0220`)
Product	Router Manager (`0abc53bc-fbdb-5072-9a27-ab0c4a782c0a`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-39348`	vulnerable	2026-06-03 14:56:20.622769	Details available HIGH (7.5) Download of code without integrity check vulnerability in AirPrint functionality in Synology Router Manager (SRM) before 1.2.5-8227-11 and 1.3.1-9346-8 allows man-in-the-middle attackers to execute arbitrary code via unspecified vectors. Published: 2024-06-28T06:30:57.973Z Updated: 2024-08-02T04:26:14.241Z Open on db.gcve.eu Reference links https://www.synology.com/en-global/security/advisory/Synology_SA_23_16	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-39347`	vulnerable	2026-06-03 14:56:20.613409	Details available MEDIUM (5.9) Incorrect default permissions vulnerability in firewall functionality in Synology Router Manager (SRM) before 1.2.5-8227-11 and 1.3.1-9346-8 allows man-in-the-middle attackers to access highly sensitive intranet resources via unspecified vectors. Published: 2024-06-28T06:30:10.727Z Updated: 2024-08-02T04:26:14.241Z Open on db.gcve.eu Reference links https://www.synology.com/en-global/security/advisory/Synology_SA_23_16	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.