CVE-2026-2237 | Synology Storage Manager prior 1.0.1-1100 GET Request get request method with sensitive query strings (SA_26_01)

A vulnerability marked as problematic has been reported in Synology Storage Manager. Affected by this issue is some unknown functionality of the component GET Request Handler. This manipulation causes use of get request method with sensitive query strings.

This vulnerability is handled as CVE-2026-2237. It is possible to launch the attack on the local host. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More