CVE Vulnerabilities

CVE-2018-8926

Permissive Regular Expression

Published: Jun 08, 2018 | Modified: Nov 21, 2024
CVSS 3.x
8.8
HIGH
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
6.5 MEDIUM
AV:N/AC:L/Au:S/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Permissive regular expression vulnerability in synophoto_dsm_user in Synology Photo Station before 6.8.5-3471 and before 6.3-2975 allows remote authenticated users to conduct privilege escalation attacks via the fullname parameter.

Weakness

The product uses a regular expression that does not sufficiently restrict the set of allowed values.

Affected Software

Name Vendor Start Version End Version
Photo_station Synology 6.3-2958 (including) 6.3-2975 (including)
Photo_station Synology 6.8.0-3456 (including) 6.8.5-3471 (excluding)

Extended Description

This effectively causes the regexp to accept substrings that match the pattern, which produces a partial comparison to the target. In some cases, this can lead to other weaknesses. Common errors include:

Potential Mitigations

References