CVE-2017-16775: Input Validation
First published: Mon Apr 01 2019(Updated: )
Improper restriction of rendered UI layers or frames vulnerability in SSOOauth.cgi in Synology SSO Server before 2.1.3-0129 allows remote attackers to conduct clickjacking attacks via unspecified vectors.
Credit: security@synology.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Synology SSO Server | <2.1.3-0129 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2017-16775.
What is the title of this vulnerability?
The title of this vulnerability is 'Improper restriction of rendered UI layers or frames vulnerability in SSOOauth.cgi in Synology SSO Server before 2.1.3-0129'.
What is the severity of CVE-2017-16775?
The severity of CVE-2017-16775 is high with a score of 6.1.
What software is affected by CVE-2017-16775?
The Synology SSO Server before version 2.1.3-0129 is affected by CVE-2017-16775.
How can remote attackers exploit CVE-2017-16775?
Remote attackers can exploit CVE-2017-16775 by conducting clickjacking attacks via unspecified vectors.
- collector/nvd-index
- agent/weakness
- agent/event
- agent/severity
- agent/author
- agent/references
- agent/description
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/synology
- canonical/synology sso server