CVE-2018-8927

Improper authorization vulnerability in SYNO.Cal.Event in Calendar before 2.1.2-0511 allows remote authenticated users to create arbitrary events via the (1) cal_id or (2) original_cal_id parameter.
Configurations

Configuration 1

cpe:2.3:a:synology:calendar:*:*:*:*:*:*:*:*

Information

Published : 2018-06-14 02:29

Updated : 2021-05-12 02:15


NVD link : CVE-2018-8927

Mitre link : CVE-2018-8927

Products Affected
CWE