Mail Server Accepts Plaintext Credentials Synology NAS shall be safe if NFS rules are properly set, and if it may only be connected by specific IP addresses. This warning exists as long as NFS service is enabled. Synology has confirmed the version of implemented NFS module is 1.2.1, much later than the version required to address the issue. Nlockmgr RPC Service Multiple Vulnerabilities IETF RADIUS Dictionary Attack Vulnerability Multiple Vendor Radius Short Vendor-Length Field Denial of Service Vulnerability Red Hat JBoss Enterprise Application Platform Multiple Security Vulnerabilities (RHSA-2014:0170-1) SMB Signing Disabled or SMB Signing Not Required Synology is still in contact with Qualys to clarify this issue. Therefore the system will not be affected by this vulnerability. OpenSSH Xauth Command Injection VulnerabilityĭSM supports X11 forwarding but GUI of X11. Synology uses FreeRADIUS, not OpenRADIUS. OpenRADIUS Divide By Zero Denial of Service Vulnerability Red Hat JBoss Enterprise Application Platform Multiple Security Vulnerabilities NFS-Utils Xlog Remote Buffer Overrun Vulnerability Synology has confirmed the version of implemented NFS module is 1.2.8, much later than the version required to address the issue.
Dsm evoscan 2.9 injector logging code#
Red Hat JBoss EAP/Web Server Java UnSerialize Common-Collections Remote Code Execution Vulnerability JBoss HTTP Header Information Disclosure Vulnerability This issue is still in research stage by Synology. Remote Management Service Accepting Unencrypted Credentials Detected Please make sure only trusted devices can access your Synology NAS. This can be avoided by correct configuration of firewall settings. JBoss Enterprise Application Platform Status Servlet Request Remote Information Disclosure Mac users can enable this option for the compatibility with NFS service. NFS RPC Services Listening on Non-Privileged Ports With regards to the compatibility with clients of older version that does not support SSl/TLS connection. As long as the NFS rules are properly set to exclusively allow the connection of specific IP addresses, your Synology NAS should be safe.Īdding rules reminder to security advisor could reduce issues resulting from configuration. You will always see this warning when NFS service is enabled. NFS Exported Filesystems List Vulnerability
0 kommentar(er)
