RSS feeds from official Synology site regarding product security updates.
- Threads: 249
- Messages: 326
Filter by prefix:
Multiple vulnerabilities allow remote authenticated users to inject SQL command or read and write arbitrary files via a susceptible version of...
Multiple vulnerabilities allow remote attackers to obtain sensitive information and possibly execute arbitrary code via a susceptible version of...
None of Synology's products are affected by CVE-2022-1183 as this vulnerability only affect ISC BIND 9.18.0 and later.
Continue reading...
- - -...
Multiple vulnerabilities allow remote authenticated users to inject SQL command via a susceptible version of Synology Router Manager (SRM)...
None of Synology's products are affected as these vulnerabilities only affect products equipped with Spring Cloud Function or Spring Framework and...
A vulnerability allow remote authenticated users to conduct denial-of-service attack via a susceptible version of Synology DiskStation Manager...
A vulnerability allows remote authenticated users to execute arbitrary commands via a susceptible version of DiskStation Manager (DSM).
Continue...
A vulnerability allows remote authenticated users to execute arbitrary code via a susceptible version of Synology DiskStation Manager (DSM)...
Multiple vulnerabilities allow remote attackers, or remote authenticated users to inject arbitrary web script or HTML via a susceptible version of...
None of Synology's products are affected as CVE-2021-44228 only affects products equipped with log4j 2.
Continue reading...
- - -
Source...
CVE-2016-2124 and CVE-2020-25717 allow remote authenticated users and man-in-the-middle attackers to obtain sensitive information and bypass...
A vulnerability allows remote authenticated users to execute arbitrary commands via a susceptible version of Mail Station.
Continue reading...
-...
A vulnerability allows remote attackers to conduct denial-of-service attacks via a susceptible version of Synology DNS Server.
Continue...
A vulnerability allows remote attackers to bypass security constraints via a susceptible version of Photo Station.
Continue reading...
- - -...
Multiple vulnerabilities allow remote attackers to conduct denial-of-service attack or execute arbitrary code via a susceptible version of...
Multiple vulnerabilities allow local users to execute arbitrary commands via a susceptible version of DiskStation Manager (DSM).
Continue...
None of Synology's products are affected by CVE-2021-25218 as this vulnerability only affect ISC BIND 9.16.19 and later.
Continue reading...
- -...
Multiple vulnerabilities allow remote authenticated users to execute arbitrary commands, or remote attackers to write arbitrary files via a...
A vulnerability allows remote attackers to execute arbitrary commands via a susceptible version of Audio Station.
Continue reading...
- - -...
Multiple vulnerabilities allow remote attackers to forge encrypted frames or conduct denial-of-service attacks or man-in-the-middle attackers to...