EIP-2026-103324

PRE-CVE

Synology DiskStation Manager (DSM) 4.3-3776 - Multiple Vulnerabilities

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-103324. PoCs published by Andrea Fabrizi.

AI-analyzed exploit summary This exploit demonstrates multiple vulnerabilities in Synology DSM, including arbitrary file download via path traversal, command injection with root privileges, and partial remote content download via buffer overflow. The PoC provides clear examples of HTTP requests to exploit these flaws.

Description

Synology DiskStation Manager (DSM) 4.3-3776 - Multiple Vulnerabilities

Exploits (1)

exploitdb WORKING POC

by Andrea Fabrizi · textwebappslinux

https://www.exploit-db.com/exploits/28243

View Code ZIP pw:eip

This exploit demonstrates multiple vulnerabilities in Synology DSM, including arbitrary file download via path traversal, command injection with root privileges, and partial remote content download via buffer overflow. The PoC provides clear examples of HTTP requests to exploit these flaws.

Classification

Working Poc 95%

Attack Type

Rce | Info Leak | Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: Synology DiskStation Manager (DSM) <= 4.3-3776

Auth required

Prerequisites: Authenticated user session (low privilege for file download, admin for RCE) · Network access to the target system

MITRE ATT&CK

T1005 - Data from Local System T1059 - Command and Scripting Interpreter T1083 - File and Directory Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026