Test ID:	1.3.6.1.4.1.25623.1.0.114440
Category:	General
Title:	Synology Router Manager (SRM) 1.3.x < 1.3.1-9346-6 Multiple Vulnerabilities (Synology-SA-23:10) - Unreliable Remote Version Check
Summary:	Synology Router Manager (SRM) is prone to multiple; vulnerabilities.
Description:	Summary: Synology Router Manager (SRM) is prone to multiple vulnerabilities. Vulnerability Insight: The following vulnerabilities exist: - CVE-2023-41738: OS command injection - CVE-2023-41739: Uncontrolled resource consumption in File Functionality - CVE-2023-41740: Path traversal in the CGI component - CVE-2023-41741: Information disclosure in the CGI component Affected Software/OS: SRM version 1.3.x prior to 1.3.1-9346-6. Solution: Update to firmware version 1.3.1-9346-6 or later. CVSS Score: 9.0 CVSS Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-41738 Synology-SA-23:10 SRM https://www.synology.com/en-global/security/advisory/Synology_SA_23_10 Common Vulnerability Exposure (CVE) ID: CVE-2023-41739 Common Vulnerability Exposure (CVE) ID: CVE-2023-41740 Common Vulnerability Exposure (CVE) ID: CVE-2023-41741
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.