CVE-2025-2848 | Synology Mail Server prior 1.7.6-10676/1.7.6-20676 Setting authorization (SA_25_05)

A vulnerability identified as critical has been detected in Synology Mail Server. This impacts an unknown function of the component Setting Handler. The manipulation leads to missing authorization.

This vulnerability is listed as CVE-2025-2848. The attack may be initiated remotely. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More