First published: Fri Dec 08 2017(Updated: )
Improper access control vulnerability in SYNO.Cal.EventBase in Synology Calendar before 2.0.1-0242 allows remote authenticated users to modify calendar event via unspecified vectors.
Credit: security@synology.com
Affected Software | Affected Version | How to fix |
---|---|---|
Synology Calendar | <2.0.1-0242 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2017-15891.
The title of this vulnerability is 'Improper access control vulnerability in SYNO.Cal.EventBase in Synology Calendar before 2.0.1-0242'.
The severity of CVE-2017-15891 is medium with a CVSS score of 6.5.
CVE-2017-15891 affects Synology Calendar before version 2.0.1-0242.
The vulnerability can be exploited by remote authenticated users to modify calendar events via unspecified vectors.