Synology Synology RS820+
- The Synology RS820+ is a high-performance NAS device designed for small to medium-sized businesses and homes, offering advanced features such as data backup and recovery, file sharing, and media streaming.
Specifications
- OS
- DSM
- CPU
- Intel Celeron J4125 quad-core 2.0 GHz
- LAN
- Gigabit Ethernet
- RAM
- 2 GB DDR4
- USB
- 2x USB 3.2 Gen 1
- Drive Bays
- 4 bays
- Ports
- 4x RJ-45, 2x USB 3.2 Gen 1, 1x eSATA
- Storage
- 3.5"/2.5" SATA HDD/SSD
- LAN Ports
- 4x GE
- Management
- Synology DiskStation Manager (DSM)
Potential Threats
18 Known CVEs
Default IP
192.168.1.100
Default admin panel address for Synology Synology RS820+
Known CVE Vulnerabilities (18)
MallChat v1.0-SNAPSHOT has an authentication bypass vulnerability. An attacker can exploit this vulnerability to access API without any token.
zhisheng17 blog 3.0.1-SNAPSHOT has an authentication bypass vulnerability. An attacker can exploit this vulnerability to access API without any token.
An authentication bypass vulnerability in PandoraNext-TokensTool v0.6.8 and before. An attacker can exploit this vulnerability to access API without a...
jeewx-boot 1.3 has an authentication bypass vulnerability in the preHandle function
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in the system syncing daemon in Synology Drive Serv...
Missing authentication for critical function vulnerability in the webapi component in Synology Drive Server before 3.0.4-12699, 3.2.1-23280, 3.5.0-260...
Improper encoding or escaping of output vulnerability in the webapi component in Synology BeeStation OS (BSM) before 1.1-65374 and Synology DiskStatio...
Improper certificate validation vulnerability in the update functionality in Synology BeeStation OS (BSM) before 1.1-65374 and Synology DiskStation Ma...
Improper certificate validation vulnerability in the LDAP utilities in Synology DiskStation Manager (DSM) before 7.1.1-42962-8, 7.2.1-69057-7 and 7.2....
A Broken Object Level Authorization (BOLA) vulnerability in Indico through 3.3.5 allows attackers to read information by sending a crafted POST reques...
Showing 10 of 18
FAQ
The most common default credentials for Synology Synology RS820+ are listed in the table above. Always change these immediately after setup.
The default username for Synology Synology RS820+ is typically "admin". The full list of default credentials including username, password, access type and port is shown in the table on this page.
Log in to the admin panel using the default credentials listed above. Navigate to Administration → Password or System → Account settings. Enter the current password and set a new strong password. Save the changes.
Locate the Reset button (usually a small pinhole on the back/bottom of the device). Hold it for 10-30 seconds while powered on until the LEDs flash. The device will reboot with default settings.
No. Default credentials are publicly known and frequently exploited by automated scanners. Change the admin password immediately after first login.
Synology Synology RS820+ has 18 known CVE vulnerabilities documented in our database. The full list with severity ratings is shown on this page. Apply the latest firmware update from the manufacturer to address known issues.
