{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Synology Disk Station Manager (DSM) version 6.2","product":{"name":"DSM","vendor":{"name":"Synology","scada":false}}},{"description":"Synology Disk Station Manager (DSM) 7.2.x versions ant\u00e9rieures \u00e0 7.2-64561","product":{"name":"DSM","vendor":{"name":"Synology","scada":false}}},{"description":"Synology Disk Station Manager (DSM) version 7.1","product":{"name":"DSM","vendor":{"name":"Synology","scada":false}}},{"description":"Synology Disk Station Manager Unified Controller (DSMUC) 3.1.x versions ant\u00e9rieures \u00e0 3.1.2-23068","product":{"name":"N/A","vendor":{"name":"Synology","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[],"links":[],"reference":"CERTFR-2024-AVI-0035","revisions":[{"description":"Version initiale","revision_date":"2024-01-16T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire"}],"summary":"Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Synology Disk Station Manager\n(DSM). Elle permet \u00e0 un attaquant de provoquer une ex\u00e9cution de code\narbitraire.\n\nSynology pr\u00e9cise que des correctifs seront publi\u00e9s ult\u00e9rieurement pour\nles versions 6.2\u00a0 et 7.1 de Synology DSM.\n","title":"Vuln\u00e9rabilit\u00e9 dans Synology Disk Station Manager","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Synology Synology-SA-24:01 du 09 janvier 2024","url":"https://www.synology.com/fr-fr/security/advisory/Synology_SA_24_01"}]}