Install the app
How to install the app on iOS

Follow along with the video below to see how to install our site as a web app on your home screen.

Note: This feature may not be available in some browsers.

Synology Security Synology-SA-26:10 Synology Chat Server

Synology RSS

Synology RSS

490
26
www.synology.com
Synology has released a security update for the Synology Chat Server package in DSM to address multiple vulnerabilities : CVE-2026-40541 allows remote authenticated users to read or write arbitrary files and conduct denial-of-service attacks. CVE-2026-9491 allows remote authenticated users to obtain non-sensitive information. CVE-2026-9548 allows remote authenticated users to read or write restricted files and conduct limited denial-of-service attacks. Please refer to the 'Affected Products' table for the corresponding updates.

Continue reading...
- - -
Synology Product Security Advisory: check the list

Source: synology.com
 
All three vulnerabilities require remote authenticated users. Also, the remediation is to install Chat server v2.4.5-22148 which was released back on February 2026... so hopefully that has been on your update tasks in the past three months. Fixes are for v7.2.1 and later.
 

Create an account or login to comment

You must be a member in order to leave a comment

Create account

Create an account on our community. It's easy!

Register

Log in

Already have an account? Log in here.

Popular tags from this forum

dsm remote security server srm station vulnerability

Similar threads

Synology RSS
Synology Security Synology-SA-26:09 Linux Kernel (Dirty Frag)
None of Synology's products are affected by CVE-2026-43284 and CVE-2026-43500. Continue reading... - - -...
Replies
0
Views
208
Synology RSS
Synology RSS
Synology RSS
Synology Security Synology-SA-26:08 Linux kernel
None of Synology's products are affected by CVE-2026-31431. Continue reading... - - - Synology Product...
Replies
0
Views
233
Synology RSS
Synology RSS
Synology RSS
Synology Security Synology-SA-26:07 DSM
Synology has released a security update for the DSM to address a vulnerability : CVE-2026-40540 allows...
Replies
0
Views
251
Synology RSS
Synology RSS
Synology RSS
Synology Security Synology-SA-26:06 DSM
Synology has released a security update for the DSM to address multiple vulnerabilities : CVE-2026-40530...
Replies
0
Views
275
Synology RSS
Synology RSS
Synology RSS
Synology Security Synology-SA-26:05 Synology SSL VPN Client
Synology has released a security update for the Synology SSL VPN Client utility to address...
Replies
0
Views
183
Synology RSS
Synology RSS
Synology RSS
Synology Security Synology-SA-26:04 Mail Station
Like so many of Synology's scurrilous ways, they revised the announcement content to show April 8, when...
Replies
4
Views
286
Telos
Telos
Synology RSS
Synology Security Synology-SA-26:03 GNU Inetutils
Still finding no references to ‘many’ updates
Replies
2
Views
306
Jan Janowski
Jan Janowski

Thread Tags

Tags Tags
cve security synology chat server update vulnerability

Welcome to SynoForum.com!

SynoForum.com is an unofficial Synology forum for NAS owners and enthusiasts.

Registration is free, easy and fast!

Register

Trending content in this forum

Back
Top