Improper neutralization of special elements used in an... · CVE-2021-43927 · GitHub Advisory Database · GitHub

Improper neutralization of special elements used in an...

Critical severity Unreviewed Published Feb 8, 2022 to the GitHub Advisory Database • Updated Feb 3, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Security Management functionality in Synology DiskStation Manager (DSM) before 7.0.1-42218-2 allows remote attackers to inject SQL commands via unspecified vectors.

References

Published by the National Vulnerability Database

Feb 7, 2022

Published to the GitHub Advisory Database Feb 8, 2022

Last updated Feb 3, 2023