CVE-2017-9554
An information exposure vulnerability in forget_passwd.cgi in Synology DiskStation Manager (DSM) before 6.1.3-15152 allows remote attackers to enumerate valid usernames via unspecified vectors.
Date published : 2017-07-24
https://www.synology.com/en-global/support/security/Synology_SA_17_29_DSM