CVE-2018-8916

Unverified password change vulnerability in Change Password in Synology DiskStation Manager (DSM) before 6.2-23739 allows remote authenticated users to reset password without verification.
Configurations

Configuration 1

cpe:2.3:a:synology:diskstation_manager:*:*:*:*:*:*:*:*

Information

Published : 2018-06-08 01:29

Updated : 2019-10-09 11:43


NVD link : CVE-2018-8916

Mitre link : CVE-2018-8916

Products Affected
No products.
CWE
CWE-640

Weak Password Recovery Mechanism for Forgotten Password