CVE-2024-53286 Information
Jul 24, 2025
cve
Description
Improper neutralization of special elements used in an OS command (‘OS Command Injection’) vulnerability in DDNS Record functionality in Synology Router Manager (SRM) before 1.3.1-9346-11 allows remote authenticated users with administrator privileges to execute arbitrary code via unspecified vectors.
Reference
https://www.synology.com/en-global/security/advisory/Synology_SA_24_16
Related CNNVD
CNNVD-202507-2968 (Published: 2025-07-23)
Share on: