CVE-2024-11399
- EPSS 0.11%
- Veröffentlicht 27.05.2026 08:26:49
- Zuletzt bearbeitet 02.06.2026 19:55:15
Files or directories accessible to external parties vulnerability in redis-server component in Synology BeeDrive for desktop before 1.3.2-13814 allows local users to conduct denial-of-service attacks via unspecified vectors.
CVE-2023-52945
- EPSS 0.14%
- Veröffentlicht 27.05.2026 08:25:46
- Zuletzt bearbeitet 29.05.2026 19:13:52
Uncontrolled search path element vulnerability in OpenSSL DLL component in Synology BeeDrive for desktop before 1.3.2-13814 allows local users to execute arbitrary code via unspecified vectors.
CVE-2025-8074
- EPSS 0.08%
- Veröffentlicht 04.12.2025 15:17:42
- Zuletzt bearbeitet 04.02.2026 16:26:17
Origin validation error vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.3-13973 allows local users to write arbitrary files with non-sensitive information via unspecified vectors.
CVE-2025-54160
- EPSS 0.18%
- Veröffentlicht 04.12.2025 15:14:11
- Zuletzt bearbeitet 04.02.2026 16:26:24
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors.
CVE-2025-54159
- EPSS 0.38%
- Veröffentlicht 04.12.2025 15:13:46
- Zuletzt bearbeitet 04.02.2026 16:26:21
Missing authorization vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows remote attackers to delete arbitrary files via unspecified vectors.
CVE-2025-54158
- EPSS 0.17%
- Veröffentlicht 04.12.2025 15:13:29
- Zuletzt bearbeitet 24.02.2026 18:27:57
Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors.