Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / synology

synology

329 tracked vulnerabilities.

CVE-2021-43927 MEDIUM

Synology DSM <7.0.1-42218-2 - SQL Injection

CVE-2021-43926 MEDIUM

Synology DSM <7.0.1-42218-2 - SQL Injection

CVE-2021-43925 MEDIUM

Synology DSM <7.0.1-42218-2 - SQL Injection

CVE-2021-29087 HIGH

Synology DiskStation Manager < 6.2.3-25426-3 - Path Traversal and Arbitrary File Write via WebAPI Component

CVE-2021-29086 MEDIUM

Synology DSM <6.2.3-25426-3 & DSM UC <3.1-23033 Sensitive Info Exposure via WebAPI

CVE-2021-29085 HIGH

Synology DiskStation Manager 6.2-6.2.3-25426-3 - Arbitrary File Read via File Sharing Management Component

CVE-2021-29084 HIGH

Synology DSM <6.2.3-25426-3 & DSM UC <3.1-23033 Arbitrary File Read

CVE-2021-27649 CRITICAL

Synology DSM <6.2.3-25426-3 - Use After Free

CVE-2021-34812 MEDIUM

Synology Calendar < 2.4.0-0761 - Use of Hard-coded Credentials in PHP Component

CVE-2021-34811 MEDIUM

Synology Download Station < 3.8.16-3566 - Authenticated Server-Side Request Forgery in Task Management Component

CVE-2021-34810 CRITICAL

Synology Download Station < 3.8.16-3566 - Authenticated Remote Code Execution via CGI Component

CVE-2021-34809 CRITICAL

Synology Download Station < 3.8.16-3566 - Authenticated Remote Code Execution via Task Management Component

CVE-2021-34808 MEDIUM

Synology Media Server < 1.8.3-2881 - Server-Side Request Forgery via CGI Component

CVE-2021-29089 CRITICAL

Synology Photo Station < 6.8.14-3500 - SQL Injection in Thumbnail Component

CVE-2021-29091 HIGH

Synology Photo Station < 6.8.14-3500 - Authenticated Path Traversal and Arbitrary File Write

CVE-2021-29090 HIGH

Synology Photo Station < 6.8.14-3500 - Authenticated SQL Injection

CVE-2021-33184 HIGH

Synology Download Station <3.8.15-3563 - SSRF

CVE-2021-33183 HIGH

Synology Docker <18.09.0-0515 - Path Traversal

CVE-2021-33182 MEDIUM

Synology DSM <6.2.4-25553 - Path Traversal

CVE-2021-33181 MEDIUM

Synology Video Station <2.4.10-1632 - SSRF

CVE-2021-33180 HIGH

Synology Media Server <1.8.1-2876 - SQL Injection

CVE-2021-29092 HIGH

Synology Photo Station 6.8-6.8.13 - Authenticated Arbitrary File Upload and Remote Code Execution

CVE-2021-29088 HIGH

Synology DiskStation Manager < 6.2.4-25553 - Local Arbitrary Code Execution via Path Traversal in CGI Component

CVE-2021-31439 HIGH

Synology DiskStation Manager 6.2-6.2.3-25426-3 - Unauthenticated Heap-based Buffer Overflow in Netatalk DSI Processing

CVE-2021-27648 CRITICAL

Synology Antivirus Essential <1.4.8-2801 - Privilege Escalation

Previous Page 6 of 14 Next

Products

diskstation_manager 96 router_manager 59 photo_station 33 vs960hd_firmware 22 diskstation_manager_unified_controller 20 surveillance_station 19 skynas 16 Synology Photo Station 13 skynas_firmware 13 calendar 11 bc500_firmware 9 tc500_firmware 9 download_station 8 active_backup_for_business_agent 7 drive_client 6 drive_server 6 media_server 6 video_station 6 dns_server 5 note_station 5 Photo Station 4 audio_station 4 beedrive 4 directory_server 4 radius_server 4 beestation_os 3 carddav_server 3 chat 3 file_station 3 mailplus_server 3

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy