Synology announced the discovery and resolution of a moderate-severity vulnerability in their Mail Server, which could allow remote authenticated attackers to tamper with non-sensitive system configurations.
This issue, documented under CVE-2025-2848, highlights the importance of maintaining updated software to prevent unauthorized access to system settings.
https://gbhackers.com/synology-mail-ser ... erability/