Publish Time: 2021-05-12 18:26:08 UTC+8
Last Updated: 2021-05-12 18:26:08 UTC+8
Abstract
Multiple vulnerabilities allow remote attackers to forge encrypted frames or conduct denial-of-service attacks or man-in-the-middle attackers to forge encrypted frames via a susceptible version of Synology Router Manager (SRM).
Affected Products
Product | Severity | Fixed Release Availability |
---|---|---|
RT2600ac | Moderate | Upgrade SRM to 1.2.5-8225 or above. |
MR2200ac | Moderate | Upgrade SRM to 1.2.5-8225 or above. |
RT1900ac | Moderate | Ongoing |
Mitigation
None
Detail
CVE-2020-24586
CVE-2020-24587
CVE-2020-24588
CVE-2020-26140
CVE-2020-26141
CVE-2020-26142 (RT1900ac)
CVE-2020-26142 (RT2600ac, MR2200ac)
CVE-2020-26143
CVE-2020-26144
CVE-2020-26145
CVE-2020-26146
CVE-2020-26147
CVE-2020-26139
Reference
Revision
Revision | Date | Description |
---|---|---|
1 | 2021-05-12 | Initial public release. |