CVE-2022-27616 – Improper neutralization of special elements used in an OS command (‘OS Command Injection’) …

Vuln ID: CVE-2022-27616

Published:  2022-08-03  02:15:07Z

Description: Improper neutralization of special elements used in an OS command (‘OS Command Injection’) vulnerability in webapi component in Synology DiskStation Manager (DSM) before 7.0.1-42218-3 allows remote authenticated users to execute arbitrary commands via unspecified vectors.

Source: NVD.NIST.GOV