Friday, September 22, 2017

Security Advisory] Synology-SA-17:55 Moderate: Joomla security update



Synology Security Advisory Synology Synology Synology
Severity
Moderate
Status
Ongoing

Abstract
CVE-2017-14596 allows remote attackers to retrieve sensitive information via a vulnerable version of Joomla.
Severity
Affected
  • Products
    • Joomla 3.7.1-0157 and eariler
  • Models
    • All Synology models
Description
In Joomla! before 3.8.0, inadequate escaping in the LDAP authentication plugin can result in a disclosure of a username and password.
Mitigation
None
Update Availability
Synology will soon release the updates for the affected products.
Reference
Synology



Mojave Upgrade - Apple 2