Vulnerability Details CVE-2026-3091
An uncontrolled search path element vulnerability in Synology Presto Client before 2.1.3-0672 allows local users to read or write arbitrary files and conduct denial-of-service during installation by placing a malicious DLL in advance in the same directory as the installer.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 4.2%
CVSS Severity
CVSS v3 Score 6.7
Products affected by CVE-2026-3091
-
cpe:2.3:a:synology:presto_client:1.0.0-0048
-
cpe:2.3:a:synology:presto_client:1.1.0-0101
-
cpe:2.3:a:synology:presto_client:1.1.1-0105
-
cpe:2.3:a:synology:presto_client:1.1.2-0109
-
cpe:2.3:a:synology:presto_client:1.2.0-0163
-
cpe:2.3:a:synology:presto_client:1.3.0-0217
-
cpe:2.3:a:synology:presto_client:1.3.0-0229
-
cpe:2.3:a:synology:presto_client:1.3.1-0235
-
cpe:2.3:a:synology:presto_client:2.0.0-0317
-
cpe:2.3:a:synology:presto_client:2.0.0-0332
-
cpe:2.3:a:synology:presto_client:2.0.1-0335
-
cpe:2.3:a:synology:presto_client:2.1.0-0427
-
cpe:2.3:a:synology:presto_client:2.1.1-0583
-
cpe:2.3:a:synology:presto_client:2.1.1-0593
-
cpe:2.3:a:synology:presto_client:2.1.2-0600
-
cpe:2.3:a:synology:presto_client:2.1.2-0601
-
cpe:2.3:a:synology:presto_client:2.1.2-0652
-
cpe:2.3:a:synology:presto_client:2.1.2-0665