The router operating system Synology Router Manager (SRM) currently has a few dangerous security vulnerabilities. The vulnerabilities allow unauthorized users to use SQL commands, arbitrarily read and rewrite files. Corresponding Synology firmware updates are already available. You should install them as soon as possible.
Synology firmware updates for routers released
Synology routers running the Synology Router Manager (SRM) operating system version 1.2 and 1.3 are affected by an “important” vulnerability that has a high risk. It allows unauthorized attackers to exploit multiple vulnerabilities and execute SQL commands, as well as arbitrarily read and rewrite files.
Accordingly, new Synology firmware updates for the routers’ operating system are available for download, which close the vulnerabilities. The manufacturer writes this in the corresponding security message on its own homepage.
There does not seem to be a workaround for the problems, which is why the firmware update is indispensable. The manufacturer also does not reveal concrete details. But the version number, with which you are on the safe side:
The Synology firmware update to version 1.3.1-9316 or newer fixes the security vulnerabilities. It is available for download for SRM 1.2 and SRM 1.3.
Download Synology firmware updates: Here’s how
To download the new firmware update, simply follow the steps below.
- Go to the Synology download website
- Under “Select the product type”, go to the “Network” item
- There you enter the model name of your router or select it from the list
- There you can update to the new version 1.3.1-9316 under “Update your SRM version” by specifying your current SRM version and start the download
Synology NAS systems were last affected by a critical Netatalk security breach in April 2022, which was also fixed fairly quickly (we reported).