RSS feeds from official Synology site regarding product security updates.
-
Filter prefix: Show all
Solved
Synology Security
A vulnerability allows remote authenticated users to bypass security constraints via a susceptible version of Synology Router Manager (SRM)...
A vulnerability allows remote attackers to bypass security constraints via a susceptible version of Synology Directory Server.
Continue...
Multiple vulnerabilities allow remote attackers to execute arbitrary code via a susceptible version of Photo Station.
Continue reading...
- - -...
CVE-2020-8622 allows remote authenticated users to conduct denial-of-service attacks via a susceptible version of DNS Server. None of Synology's...
Multiple vulnerabilities allow remote attackers to conduct man-in-the-middle attacks via a susceptible version of Synology DiskStation Manager...
CVE-2020-10745 and CVE-2020-14303 allow remote attackers to conduct denial-of-service attacks via a susceptible version of Synology Directory...
None of Synology's products are affected as these vulnerabilities only affect ISC BIND 9.11.14 and later.
Continue reading...
- - -
Source...
Multiple vulnerabilities allow remote authenticated users to download arbitrary files or hijack the authentication of administrators via a...
Multiple vulnerabilities allow remote authenticated users to conduct denial-of-service attacks or obtain user credentials via a susceptible...
None of Synology's Products are affected as CVE-2020-1967 only affects OpenSSL 1.1.1 and later.
Continue reading...
- - -
Source: synology.com
A vulnerability allows remote attackers to inject arbitrary web script or HTML via a susceptible version of Drupal.
Continue reading...
- - -...
A vulnerability allows remote attackers to obtain sensitive information via a susceptible version of Synology Router Manager (SRM) that is...
A vulnerability allows remote attackers to execute arbitrary code via a susceptible version of DiskStation Manager (DSM) or Synology Router...
Multiple vulnerabilities allow remote authenticated users to bypass security constraints via a susceptible version of Synology Directory Server or...
A vulnerability allows remote authenticated users to upload arbitrary files via a susceptible version of Drupal.
Continue reading...
- - -...
A vulnerability allows local users to conduct denial-of-service attacks, obtain sensitive information, or conduct privilege escalation attacks via...
Multiple vulnerabilities allow remote authenticated users to inject arbitrary web script or HTML or bypass security constraint via a susceptible...
CVE-2019-14861 and CVE-2019-11479 allow remote authenticated users to conduct denial-of-service attacks or bypass security constraints via a...
None of Synology products are affected by CVE-2019-6477 as this vulnerability only affect ISC BIND 9.11.0 and later.
Continue reading...
- - -...
A vulnerability allows remote attackers to conduct denial-of-service attacks via a susceptible version of Synology Assistant.
Continue reading...