Missing authorization vulnerability in synocopy in Synology DiskStation Manager (DSM) before 7.1.1-42962-8, 7.2.1-69057-7 and 7.2.2-72806-3 allows remote attackers to read arbitrary files via unspecified vectors.

Published: 2025-04-23

CVSS: 7.5

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Download Exploit for CVE-2025-1021 here:

Use Tor Browser to access .onion links.

Check our team here:

https://tatramed.sk/exploit-500-cve-2025-66412/

https://tatramed.sk/exploit-776-cve-2024-50379/

https://tatramed.sk/exploit-820-cve-2023-41763/

https://tatramed.sk/exploit-58-cve-2023-39216/