Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
synology vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-43748
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in file operation management in Synology Presto File Server prior to 2.1.2-1601 allows remote malicious users to write arbitrary files via unspecified vectors.
Synology Presto File Server
NA
CVE-2022-43749
Improper privilege management vulnerability in summary report management in Synology Presto File Server prior to 2.1.2-1601 allows remote authenticated users to bypass security constraint via unspecified vectors.
Synology Presto File Server
NA
CVE-2022-27622
Server-Side Request Forgery (SSRF) vulnerability in Package Center functionality in Synology DiskStation Manager (DSM) prior to 7.1-42661 allows remote authenticated users to access intranet resources via unspecified vectors.
Synology Diskstation Manager
NA
CVE-2022-27623
Missing authentication for critical function vulnerability in iSCSI management functionality in Synology DiskStation Manager (DSM) prior to 7.1-42661 allows remote malicious users to read or write arbitrary files via unspecified vectors.
Synology Diskstation Manager
NA
CVE-2022-27626
A vulnerability regarding concurrent execution using shared resource with improper synchronization ('Race Condition') is found in the session processing functionality of Out-of-Band (OOB) Management. This allows remote malicious users to execute arbitrary commands via u...
Synology Diskstation Manager
NA
CVE-2022-3576
A vulnerability regarding out-of-bounds read is found in the session processing functionality of Out-of-Band (OOB) Management. This allows remote malicious users to obtain sensitive information via unspecified vectors. The following models with Synology DiskStation Manager (DSM) ...
Synology Diskstation Manager
NA
CVE-2022-27624
A vulnerability regarding improper restriction of operations within the bounds of a memory buffer is found in the packet decryption functionality of Out-of-Band (OOB) Management. This allows remote malicious users to execute arbitrary commands via unspecified vectors. The followi...
Synology Diskstation Manager
NA
CVE-2022-27625
A vulnerability regarding improper restriction of operations within the bounds of a memory buffer is found in the message processing functionality of Out-of-Band (OOB) Management. This allows remote malicious users to execute arbitrary commands via unspecified vectors. The follow...
Synology Diskstation Manager
NA
CVE-2022-27621
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology USB Copy prior to 2.2.0-1086 allows remote authenticated users to read or write arbitrary files via unspecified vectors.
Synology Usb Copy
NA
CVE-2022-27619
Cleartext transmission of sensitive information vulnerability in authentication management in Synology Note Station Client prior to 2.2.2-609 allows man-in-the-middle malicious users to obtain sensitive information via unspecified vectors.
Synology Note Station
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27975
CVE-2024-2961
CVE-2024-20380
XML injection
HTML injection
CVE-2024-29204
CVE-2023-51795
memory leak
CVE-2024-3470
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »