CVE-2024-47272
- EPSS 0.25%
- Veröffentlicht 27.05.2026 08:30:22
- Zuletzt bearbeitet 28.05.2026 18:37:15
Incorrect authorization vulnerability in IO Module functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to limited file write via unspecified vectors.
CVE-2024-47271
- EPSS 0.34%
- Veröffentlicht 27.05.2026 08:30:12
- Zuletzt bearbeitet 28.05.2026 18:37:41
Insufficiently protected credentials vulnerability in IPSpeaker component in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to obtain sensitive information via unspecifi...
CVE-2024-47270
- EPSS 0.25%
- Veröffentlicht 27.05.2026 08:29:56
- Zuletzt bearbeitet 28.05.2026 18:38:05
Improper preservation of permissions vulnerability in Archiving Push functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to limited file write via unspecifie...
CVE-2024-47269
- EPSS 0.23%
- Veröffentlicht 27.05.2026 08:29:47
- Zuletzt bearbeitet 28.05.2026 18:38:22
Cleartext transmission of sensitive information vulnerability in Export Key functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to obtain sensitive informati...
CVE-2024-47268
- EPSS 0.34%
- Veröffentlicht 27.05.2026 08:29:31
- Zuletzt bearbeitet 28.05.2026 18:38:41
Missing authorization vulnerability in AddOns functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to obtain sensitive information via unspecified vectors.
CVE-2024-47267
- EPSS 0.33%
- Veröffentlicht 27.05.2026 08:29:16
- Zuletzt bearbeitet 28.05.2026 18:39:06
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in Archiving Pull functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privi...
CVE-2023-52944
- EPSS 0.39%
- Veröffentlicht 04.12.2024 07:15:05
- Zuletzt bearbeitet 04.12.2024 07:15:05
Incorrect authorization vulnerability in ActionRule webapi component in Synology Surveillance Station before 9.2.0-11289 and 9.2.0-9289 allows remote authenticated users to perform limited actions on the set action rules function via unspecified vect...
CVE-2023-52943
- EPSS 0.39%
- Veröffentlicht 04.12.2024 07:15:04
- Zuletzt bearbeitet 04.12.2024 07:15:04
Incorrect authorization vulnerability in Alert.Setting webapi component in Synology Surveillance Station before 9.2.0-11289 and 9.2.0-9289 allows remote authenticated users to to perform limited actions on the alerting function via unspecified vector...
CVE-2024-29241
- EPSS 0.76%
- Veröffentlicht 28.03.2024 07:16:12
- Zuletzt bearbeitet 12.08.2025 17:34:11
Missing authorization vulnerability in System webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to obtain non-sensitive information, write sensitive configurations in DSM, and reboot...
CVE-2024-29240
- EPSS 0.68%
- Veröffentlicht 28.03.2024 07:16:11
- Zuletzt bearbeitet 04.08.2025 19:08:23
Missing authorization vulnerability in LayoutSave webapi component in Synology Surveillance Station before 9.2.0-11289 and 9.2.0-9289 allows remote authenticated users to conduct limited denial-of-service attacks via unspecified vectors.