Multiple critical vulnerabilities (CVE-2022-0194, CVE-2022-23121, CVE-2022-23122, CVE-2022-23123, CVE-2022-23124, CVE-2022-23125) allow remote attackers to obtain sensitive information and possibly execute arbitrary code. Vulnerabilities affect products Synology DiskStation Manager (DSM) versions 7.1, 7.0, 6.2, VS Firmware version 2.3 and Synology Router Manager (SRM) version 1.2.

More information on vulnerabilities and updates is available in Synology security advisory – synology.com.