CVE-2025-4679

MEDIUM

Synology Active Backup for Microsoft 365 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-4679. PoCs published by fevar54.

AI-analyzed exploit summary This repository contains an educational PoC for CVE-2025-4679, demonstrating an OAuth vulnerability where client secrets are exposed in HTTP redirects. It includes a vulnerable server simulation and secure alternatives for comparison.

Description

A vulnerability in Synology Active Backup for Microsoft 365 allows remote authenticated attackers to obtain sensitive information via unspecified vectors.

Exploits (1)

nomisec WORKING POC

by fevar54 · poc

https://github.com/fevar54/CVE-2025-4679-SecureOAuth-Demo---Enfoque-educativo

View Code ZIP pw:eip

This repository contains an educational PoC for CVE-2025-4679, demonstrating an OAuth vulnerability where client secrets are exposed in HTTP redirects. It includes a vulnerable server simulation and secure alternatives for comparison.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Synology Active Backup for Microsoft 365 (simulated)

No auth needed

Prerequisites: Python 3.8+ · Git

MITRE ATT&CK

T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Vendor Advisory vendor-advisory

https://www.synology.com/en-global/security/advisory/Synology_SA_25_06

Various Sources

https://modzero.com/en/blog/when-backups-open-backdoors-synology-active-backup-m365/

Various Sources

https://modzero.com/static/MZ-25-02_modzero_Synology-Active-Backup-M365.pdf

Scores

CVSS v3 6.5

EPSS 0.0106

EPSS Percentile 60.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-522

Status published

Products (1)

synology/active_backup_for_microsoft_365

Published May 16, 2025

Tracked Since Feb 18, 2026