Synology Security Advisory SA-25:03 DSM on Resolved Vulnerability

Vulnerability allows attackers to read any file via writable Network File System (NFS) service.

This is a Press Release edited by StorageNewsletter.com on March 4, 2025 at 2:01 pm

Synology, Inc. had published a security advisory concerning a resolved vulnerability in DSM NAS OS.

Publish Time: 2025-02-26 08:43:35 UTC+8
Last Updated: 2025-02-26 08:43:35 UTC+8
Severity: Important
Status: Resolved

Abstract
A vulnerability allows attackers to read any file via writable Network File System (NFS) service.

Affected Products

Mitigation : None

Detail : Reserved

Acknowledgement: DEVCORE Research Team (https://devco.re/)

Revision

Revision	Date	Description
1	2025-02-26	Initial public release.