Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
synology drive vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2018-8910
Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology Drive prior to 1.0.1-10253 allows remote authenticated users to inject arbitrary web script or HTML via malicious attachments.
Synology Drive
5.4
CVSSv3
CVE-2018-8921
Cross-site scripting (XSS) vulnerability in File Sharing Notify Toast in Synology Drive prior to 1.0.2-10275 allows remote authenticated users to inject arbitrary web script or HTML via the malicious file name.
Synology Drive
5.3
CVSSv3
CVE-2018-13297
Information exposure vulnerability in SYNO.SynologyDrive.Files in Synology Drive prior to 1.1.2-10562 allows remote malicious users to obtain sensitive system information via the dsm_path parameter.
Synology Drive
7.8
CVSSv3
CVE-2017-11158
Multiple untrusted search path vulnerabilities in the installer in Synology Cloud Station Drive prior to 4.2.5-4396 on Windows allow local malicious users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) shfolder.dll, (2) ntmarta.dll, (3) secur32...
Synology Cloud Station Drive
6.5
CVSSv3
CVE-2018-8922
Improper access control vulnerability in Synology Drive prior to 1.0.2-10275 allows remote authenticated users to access non-shared files or folders via unspecified vectors.
Synology Drive 1.0.2-10275
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started