Improper restriction of communication channel to intended endpoints vulnerability in HTTP daemon in Synology SSL VPN Client before 1.2.4-0224 allows remote attackers to conduct man-in-the-middle attacks via a crafted payload.
References
Link | Resource |
---|---|
https://www.synology.com/en-global/support/security/Synology_SA_18_19 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: synology
Published: 2018-07-06T00:00:00
Updated: 2021-05-12T12:50:49
Reserved: 2018-03-22T00:00:00
Link: CVE-2018-8929
JSON object: View
NVD Information
Status : Modified
Published: 2018-07-06T12:29:00.210
Modified: 2021-05-12T14:15:10.237
Link: CVE-2018-8929
JSON object: View
Redhat Information
No data.