6.8
CVE-2024-11399
- EPSS 0.11%
- Veröffentlicht 27.05.2026 08:26:49
- Zuletzt bearbeitet 02.06.2026 19:55:15
- Quelle security@synology.com
- CVE-Watchlists
- Unerledigt
Files or directories accessible to external parties vulnerability in redis-server component in Synology BeeDrive for desktop before 1.3.2-13814 allows local users to conduct denial-of-service attacks via unspecified vectors.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.11% | 0.016 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| security@synology.com | 6.8 | 2.5 | 4.2 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
|
CWE-552 Files or Directories Accessible to External Parties
The product makes files or directories accessible to unauthorized actors, even though they should not be.
https://www.synology.com/en-global/security/advisory/Synology_SA_24_26