cpe:/o:synology:dsm:2.2-0942 cpe:/o:synology:dsm:2.2-1041 cpe:/o:synology:dsm:2.2-1042 cpe:/o:synology:dsm:2.2-1045 cpe:/o:synology:dsm:2.3-1139 cpe:/o:synology:dsm:2.3-1141 cpe:/o:synology:dsm:2.3-1144 cpe:/o:synology:dsm:2.3-1157 cpe:/o:synology:dsm:2.3-1161 CVE-2010-3684 2010-09-29T13:00:05.743-04:00 2010-09-30T00:00:00.000-04:00 2.1 LOCAL LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2010-09-30T12:52:00.000-04:00 BUGTRAQ 20100926 Web commands injection through FTP Login in Synology Disk Station - CVE-2010-2453 The FTP authentication module in Synology Disk Station 2.x logs passwords to the web application interface in cases of incorrect login attempts, which allows local users to obtain sensitive information by reading a log, a different vulnerability than CVE-2010-2453.