CVE Vulnerabilities

CVE-2024-10444

Improper Certificate Validation

Published: Mar 19, 2025 | Modified: Mar 19, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Improper certificate validation vulnerability in the LDAP utilities in Synology DiskStation Manager (DSM) before 7.1.1-42962-8, 7.2.1-69057-7 and 7.2.2-72806-3 allows man-in-the-middle attackers to hijack the authentication of administrators via unspecified vectors.

Weakness

The product does not validate, or incorrectly validates, a certificate.

Potential Mitigations

References