CVE-2025-29845 | Synology Router Manager up to 1.3.1-9346-11 VideoPlayer2 Subtitle CGI path traversal (SA_25_04)

A vulnerability was found in Synology Router Manager. It has been rated as critical. The impacted element is an unknown function of the component VideoPlayer2 Subtitle CGI. Performing manipulation results in path traversal.

This vulnerability is identified as CVE-2025-29845. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More