Skip to content

CyberIQs – Home
Blog
About Us
Contact Us

CVE-2023-41738

CyberIQs
September 7, 2023

Go to Home » cyber

An improper neutralization of special elements used in an OS command (‘OS Command Injection') vulnerability in Directory Domain Functionality in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote authenticated users to execute arbitrary commands via unspecified vectors.

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Synology RT6600ax routers. Authentication is required to exploit this vulnerability.

Read more

Tags: CVE, Synology, network, authentication, OS, Vulnerability, Remote, 2023, exploit, routers

Related Posts

CVE-2023-41740a
CVE-2023-41739a
CVE-2023-41741a
Update: Exploit Released for Critical VMware SSH Authentication Bypass Vulnerabilitya
You’ve patched right? ‘340K+ Fortinet firewalls’ wide open to critical security buga

AI News

Revolutionizing Panoptic Segmentation with FC-CLIP: A Unified Single-Stage Artificial Intelligence AI Framework

September 27, 2023 2:48 am

The writers strike is over; here’s how AI negotiations shook out

September 27, 2023 2:26 am

Hollywood writers’ strike ends with first-ever protections against AI

September 27, 2023 1:41 am

Cyber News

Ransomware attacks down in August after record levels in July

September 27, 2023 5:24 am

Is Elon Musk’s Vision for ‘X’ Already Up Against Signal, Telegram, and Paypal in an Existing Market?

September 27, 2023 5:00 am

Xenomorph Android Malware Reappears in a New Campaign Targeting U.S. Banks

September 27, 2023 4:32 am

Blog

Hitrust Certification

May 2, 2023 8:14 am

What is the best cloud security certification, CCSP, CCSK or CCAK?

April 21, 2023 9:23 pm

The Top 3 Countries With The Best Cyber Warfare Capabilities

April 2, 2023 2:47 pm

Find us on social media

Facebook Twitter Linkedin Reddit

© 2023 CyberIQs | All rights reserved.

News
About Us
Contact Us
Cookie Policy
Disclaimer
Privacy Statement

Follow Us

Facebook Twitter Linkedin

Manage Cookie Consent

We use cookies to optimize our website and our service.

Functional Functional Always active

The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.

Preferences Preferences

The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.

Statistics Statistics

The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.

Marketing Marketing

The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.

Manage options Manage services Manage vendors Read more about these purposes

View preferences

{title} {title} {title}