RSS feeds from official Synology site regarding product security updates.
- Threads: 241
- Messages: 313
Filter by prefix:
Multiple vulnerabilities allow remote attackers, or remote authenticated users to inject arbitrary web script or HTML via a susceptible version of...
None of Synology's products are affected as CVE-2021-44228 only affects products equipped with log4j 2.
Continue reading...
- - -
Source...
CVE-2016-2124 and CVE-2020-25717 allow remote authenticated users and man-in-the-middle attackers to obtain sensitive information and bypass...
A vulnerability allows remote authenticated users to execute arbitrary commands via a susceptible version of Mail Station.
Continue reading...
-...
A vulnerability allows remote attackers to conduct denial-of-service attacks via a susceptible version of Synology DNS Server.
Continue...
A vulnerability allows remote attackers to bypass security constraints via a susceptible version of Photo Station.
Continue reading...
- - -...
Multiple vulnerabilities allow remote attackers to conduct denial-of-service attack or execute arbitrary code via a susceptible version of...
Multiple vulnerabilities allow local users to execute arbitrary commands via a susceptible version of DiskStation Manager (DSM).
Continue...
None of Synology's products are affected by CVE-2021-25218 as this vulnerability only affect ISC BIND 9.16.19 and later.
Continue reading...
- -...
Multiple vulnerabilities allow remote authenticated users to execute arbitrary commands, or remote attackers to write arbitrary files via a...
A vulnerability allows remote attackers to execute arbitrary commands via a susceptible version of Audio Station.
Continue reading...
- - -...
Multiple vulnerabilities allow remote attackers to forge encrypted frames or conduct denial-of-service attacks or man-in-the-middle attackers to...
A vulnerability allows remote authenticated users to execute arbitrary commands via a susceptible version of Synology Router Manager (SRM)...
A vulnerability allows remote attackers to inject arbitrary web script or HTML via a susceptible version of Hyper Backup.
Continue reading...
- -...
A vulnerability allows remote authenticated users to bypass security constraint via a susceptible version of DiskStation Manager (DSM) or Synology...
A vulnerability allows remote attackers to obtain sensitive information or conduct denial-of-service attacks via a susceptible version of Synology...
A vulnerability allows remote authenticated users to obtain privileges without consent via a susceptible version of Antivirus Essential.
Continue...
None of Synology's products are affected as these vulnerabilities only affect OpenSSL 1.1.1 and later.
Continue reading...
- - -
Source: synology.com
Multiple vulnerabilities allow remote attackers and remote authenticated users to conduct denial-of-service attacks via a susceptible version of...
A vulnerability allows remote attackers to bypass security constraints via a susceptible version of Synology Calendar.
Continue reading...
- - -...