CVE-2025-13392

HIGH NVD

CVSS Score 8.1

Severity HIGH

Published May 27, 2026

Vendor unknown

Description

Improper check for unusual or exceptional conditions vulnerability in SSO in Synology DiskStation Manager (DSM) before 7.2.2-72806-5 and 7.3.1-86003-1 (7.2.1-69057 is not affected) allows remote attackers to bypass authentication with prior knowledge of the distinguished name (DN).

References

https://www.synology.com/en-global/security/advisory/Synology_SA_25_14