CVE-2025-13392 | Synology DiskStation DS925+ SYNOPAMSSO::samlAuth improper authentication (ZDI-25-1040)

A vulnerability was found in Synology DiskStation DS925+. It has been declared as critical. The affected element is the function SYNOPAMSSO::samlAuth. Executing manipulation can lead to improper authentication.

This vulnerability is handled as CVE-2025-13392. The attack can only be done within the local network. There is not any exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More