A vulnerability was found in Synology DiskStation up to 6.1.1 (Network Attached Storage Software) and classified as problematic. This issue affects an unknown code of the component SYNO.Core.PortForwarding.Rules. The manipulation with an unknown input leads to a resource consumption vulnerability. Using CWE to declare the problem leads to CWE-400. The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources. Impacted is availability. The summary by CVE is:

Uncontrolled Resource Consumption vulnerability in SYNO.Core.PortForwarding.Rules in Synology DiskStation (DSM) before 6.1.1-15088 allows remote authenticated attacker to exhaust the memory resources of the machine, causing a denial of service attack.

The bug was discovered 08/28/2017. The weakness was shared 08/28/2017 (Website). The advisory is shared at synology.com. The identification of this vulnerability is CVE-2017-12076 since 07/31/2017. The exploitation is known to be easy. The attack may be initiated remotely. A simple authentication is needed for exploitation. Neither technical details nor an exploit are publicly available. MITRE ATT&CK project uses the attack technique T1499 for this issue.

Upgrading to version 6.1.1-15088 eliminates this vulnerability.

Productinfo

Type

• Network Attached Storage Software

Vendor

• Synology

Name

• DiskStation

Version

• 6.1.0
• 6.1.1

License

• commercial

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion