CVE-2022-22686

Cross-Site Request Forgery (CSRF) vulnerability in webapi component in Synology Calendar before 2.3.4-0631 allows remote authenticated users to hijack the authentication of administrators via unspecified vectors.

Link	Resource
https://www.synology.com/security/advisory/Synology_SA_20_07	Vendor Advisory

Configuration 1

cpe:2.3:a:synology:calendar:*:*:*:*:*:*:*:*

---

Published : 2022-07-26 02:15

Updated : 2022-08-01 12:44

---

NVD link : CVE-2022-22686

Mitre link : CVE-2022-22686

Calendar

Synology

CWE-352