CVE-2014-2264

N/A Unknown

Published: March 02, 2014 Modified: April 29, 2026

Description

The OpenVPN module in Synology DiskStation Manager (DSM) 4.3-3810 update 1 has a hardcoded root password of synopass, which makes it easier for remote attackers to obtain access via a VPN session.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://forum.synology.com/enu/viewtopic.php?f=173&t=77644

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/534284

Source: cve@mitre.org

US Government Resource

http://forum.synology.com/enu/viewtopic.php?f=173&t=77644

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/534284

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

4 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.6%

70th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-200 CWE-255

Affected Vendors

synology

Related CVEs