CVE-2025-30028

HIGH WAF: High
CVSS 8.6 Published: 2026-05-27
CWE-89

A vulnerability in Active Backup for Business allows unauthorized remote attackers to read arbitrary files.

WAF Coverage Analysis

SQL Injection High WAF Coverage

OWASP: A03:2021 Injection

942xxx - SQL Injection

Affected Software

VendorProductVersion
synologyactive_backup_for_business2.7.1-23234
synologyactive_backup_for_business2.7.1-13234
synologyactive_backup_for_business2.7.1-3234

References

Back to CVE Database