Vulnerability CVE-2023-52950
Published: 2024-09-26

Description:
Missing encryption of sensitive data vulnerability in login component in Synology Active Backup for Business Agent before 2.7.0-3221 allows adjacent man-in-the-middle attackers to obtain user credential via unspecified vectors.

Type:

CWE-311

 (Missing Encryption of Sensitive Data)

 References:
https://www.synology.com/en-global/security/advisory/Synology_SA_24_11
Copyright 2024, cxsecurity.com

 

Back to Top