CVEDB API

Vulnerabilities

Vulnerable Software

Synology: >> Active Backup For Business Agent Security Vulnerabilities

CVE-2023-52947

Missing authentication for critical function vulnerability in logout functionality in Synology Active Backup for Business Agent before 2.6.3-3101 allows local users to logout the client via unspecified vectors. The backup functionality will continue to operate and will not be affected by the logout.

CVSS Score

4.0

EPSS Score

0.0

Published

2024-09-26

CVE-2023-52948

Missing encryption of sensitive data vulnerability in settings functionality in Synology Active Backup for Business Agent before 2.7.0-3221 allows local users to obtain user credential via unspecified vectors.

CVSS Score

5.0

EPSS Score

0.0

Published

2024-09-26

CVE-2023-52949

Missing authentication for critical function vulnerability in proxy settings functionality in Synology Active Backup for Business Agent before 2.7.0-3221 allows local users to obtain user credential via unspecified vectors.

CVSS Score

5.5

EPSS Score

0.0

Published

2024-09-26

CVE-2023-52950

Missing encryption of sensitive data vulnerability in login component in Synology Active Backup for Business Agent before 2.7.0-3221 allows adjacent man-in-the-middle attackers to obtain user credential via unspecified vectors.

CVSS Score

5.3

EPSS Score

0.0

Published

2024-09-26

Page 1

Vulnerabilities

Vulnerable Software

Synology: >> Active Backup For Business Agent Security Vulnerabilities

Products

Pricing

Contact Us