Synology-SA-22:23 PWN2OWN TORONTO 2022
Publish Time: 2022-12-08 16:57:24 UTC+8
Last Updated: 2023-06-09 11:29:19 UTC+8
- Severity
- Important
- Status
- Resolved
Abstract
Multiple vulnerabilities reported by PWN2OWN TORONTO 2022 have been addressed.
Affected Products
| Product | Severity | Fixed Release Availability |
|---|---|---|
| DSM 7.1 | Important | Upgrade to 7.1.1-42962-3 or above. |
| DSM 7.0 | Important | Upgrade to 7.0.1-42218-6 or above. |
| DSM 6.2 | Important | Upgrade to 6.2.4-25556-7 or above. |
| SRM 1.3 | Important | Upgrade to 1.3.1-9346-3 or above. |
| SRM 1.2 | Important | Upgrade to 1.2.5-8227-6 or above. |
Mitigation
None
Detail
- CVE-2022-45188
- Severity: Important
- CVSS3 Base Score: 8.8
- CVSS3 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Netatalk through 3.1.13 has an afp_getappl heap-based buffer overflow resulting in code execution via a crafted .appl file. This provides remote root access on some platforms such as FreeBSD (used for TrueNAS).
Acknowledgement
Kyle Zeng, Wil Gibbs, Jayakrishna Menon, and SEFCOM
Claroty Research - Vera Mens, Uri Katz, Noam Moshe, Sharon Brizinov
Reference
Revision
| Revision | Date | Description |
|---|---|---|
| 1 | 2022-12-08 | Initial public release. |
| 2 | 2022-12-22 | Update for SRM 1.3 and SRM 1.2 is now available in Affected Products. |
| 3 | 2023-01-04 | Update for DSM 7.0 is now available in Affected Products. |
| 4 | 2023-05-02 | Update for DSM 6.2 is now available in Affected Products. |