Synology Products Remote Code Execution Vulnerability
Release Date:
4 Nov 2024
2237
Views
RISK: Medium Risk
TYPE: Servers - Other Servers
A vulnerability was identified in Synology products. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.
Impact
- Remote Code Execution
System / Technologies affected
- BeePhotos for BeeStation OS 1.0
- BeePhotos for BeeStation OS 1.1
- Synology Photos 1.6 for DSM 7.2
- Synology Photos 1.7 for DSM 7.2
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://www.synology.com/en-global/security/advisory/Synology_SA_24_18
- https://www.synology.com/en-global/security/advisory/Synology_SA_24_19
Vulnerability Identifier
- No CVE information is available
Source
Related Link
Related Tags
Share with