Vulnerabilidades em Synology
294 resultadosCVE-2022-27616HIGHImproper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in webapi component in Synology DisEPSS 1.6%CVE-2024-39351HIGHA vulnerability regarding improper neutralization of special elements used in an OS command ('OS Command Injection') is found in the NTP conEPSS 1.5%CVE-2023-32956CRITICALImproper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in CGI component in Synology RouterEPSS 1.5%CVE-2022-27624CRITICALA vulnerability regarding improper restriction of operations within the bounds of a memory buffer is found in the packet decryption functionEPSS 1.5%CVE-2023-41738HIGHImproper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in Directory Domain Functionality iEPSS 1.5%CVE-2022-22684HIGHImproper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in task management component in SynEPSS 1.5%CVE-2018-13288MEDIUMInformation exposure vulnerability in SYNO.FolderSharing.List in Synology File Station before 1.2.3-0252 and before 1.1.5-0125 allows remoteEPSS 1.5%CVE-2018-13297MEDIUMInformation exposure vulnerability in SYNO.SynologyDrive.Files in Synology Drive before 1.1.2-10562 allows remote attackers to obtain sensitEPSS 1.5%CVE-2022-27625CRITICALA vulnerability regarding improper restriction of operations within the bounds of a memory buffer is found in the message processing functioEPSS 1.5%CVE-2023-47802HIGHA vulnerability regarding improper neutralization of special elements used in an OS command ('OS Command Injection') is found in the IP blocEPSS 1.5%CVE-2017-12080—An information exposure vulnerability in default HTTP configuration file in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allEPSS 1.4%CVE-2024-39349CRITICALA vulnerability regarding buffer copy without checking size of input ('Classic Buffer Overflow') is found in the libjansson component and itEPSS 1.4%CVE-2018-8919HIGHInformation exposure vulnerability in SYNO.Core.Desktop.SessionData in Synology DiskStation Manager (DSM) before 6.1.6-15266 allows remote aEPSS 1.4%CVE-2021-26566HIGHInsertion of sensitive information into sent data vulnerability in synorelayd in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allEPSS 1.4%CVE-2017-11148—Server-side request forgery (SSRF) vulnerability in link preview in Synology Chat before 1.1.0-0806 allows remote authenticated users to accEPSS 1.4%CVE-2021-29087HIGHImproper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology DiskStation ManEPSS 1.4%CVE-2018-13299MEDIUMRelative path traversal vulnerability in Attachment Uploader in Synology Calendar before 2.2.2-0532 allows remote authenticated users to uplEPSS 1.4%CVE-2018-13283HIGHLack of administrator control over security vulnerability in client.cgi in Synology SSL VPN Client before 1.2.5-0226 allows remote attackersEPSS 1.4%CVE-2017-12071—Server-side request forgery (SSRF) vulnerability in file_upload.php in Synology Photo Station before 6.7.4-3433 and 6.3-2968 allows remote aEPSS 1.4%CVE-2021-34810CRITICALImproper privilege management vulnerability in cgi component in Synology Download Station before 3.8.16-3566 allows remote authenticated useEPSS 1.4%