Synology hurries out patches for zero-days exploited at Pwn2Own(bleepingcomputer.com)
bleepingcomputer.com
Synology hurries out patches for zero-days exploited at Pwn2Own
https://www.bleepingcomputer.com/news/security/synology-fixed-two-critical-zero-days-exploited-at-pwn2own-within-days/
2 comments
Ah Synology's DSM, packaged with things that are outdated or EOL. Docker being one of them, EOL by about a year.
In one case, QNAP still had a hard coded password, after all security incidents in previous years. One of the bugs was known to synology and had not been patched.