Product
synology surveillance station
28 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-47272
CVE-2024-47271
CVE-2024-47270
CVE-2024-47269
CVE-2024-47268
CVE-2024-47267
CVE-2023-52944
CVE-2023-52943
CVE-2024-29241
CVE-2024-29240
CVE-2024-29239
CVE-2024-29238
CVE-2024-29237
CVE-2024-29236
CVE-2024-29235
CVE-2024-29234
CVE-2024-29233
CVE-2024-29232
CVE-2024-29231
CVE-2024-29230
CVE-2024-29229
CVE-2024-29228
CVE-2024-29227
CVE-2021-38687
CVE-2021-28797
CVE-2020-2501
CVE-2017-16770
CVE-2017-16767
< 9.2.2-11575
Incorrect authorization vulnerability in IO Module functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-957
< 9.2.2-11575
Insufficiently protected credentials vulnerability in IPSpeaker component in Synology Surveillance Station before 9.2.2-11575 and
< 9.2.2-11575
Improper preservation of permissions vulnerability in Archiving Push functionality in Synology Surveillance Station before 9.2.2-1
< 9.2.2-11575
Cleartext transmission of sensitive information vulnerability in Export Key functionality in Synology Surveillance Station before
< 9.2.2-11575
Missing authorization vulnerability in AddOns functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 all
< 9.2.2-11575
Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in Archiving Pull functionality in Sy
< 9.2.0-9289
Incorrect authorization vulnerability in ActionRule webapi component in Synology Surveillance Station before 9.2.0-11289 and 9.2.0
< 9.2.0-9289
Incorrect authorization vulnerability in Alert.Setting webapi component in Synology Surveillance Station before 9.2.0-11289 and 9.
< 9.2.0-9289
Missing authorization vulnerability in System webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289
< 9.2.0-9289
Missing authorization vulnerability in LayoutSave webapi component in Synology Surveillance Station before 9.2.0-11289 and 9.2.0-9
< 9.2.0-9289
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Recording.CountByCategory we
< 9.2.0-9289
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Log.CountByCategory webapi c
< 9.2.0-9289
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in ActionRule.Delete webapi com
< 9.2.0-9289
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in AudioPattern.Delete webapi c
< 9.2.0-9289
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in IOModule.EnumLog webapi comp
< 9.2.0-9289
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Group.Save webapi component
< 9.2.0-9289
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Emap.Delete webapi component
< 9.2.0-9289
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Alert.Enum webapi component
< 9.2.0-9289
Improper validation of array index vulnerability in UserPrivilege.Enum webapi component in Synology Surveillance Station before 9.
< 9.2.0-9289
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in SnapShot.CountByCategory web
< 9.2.0-9289
Missing authorization vulnerability in GetLiveViewPath webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2
< 9.2.0-9289
Missing authorization vulnerability in GetStmUrlPath webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0
< 9.2.0-9289
Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Layout.LayoutSave webapi com
< 5.2.0.4.2
A stack buffer overflow vulnerability has been reported to affect QNAP NAS running Surveillance Station. If exploited, this vulner
< 5.1.5.3.3
A stack-based buffer overflow vulnerability has been reported to affect QNAP NAS devices running Surveillance Station. If exploite
< 5.1.5.3.3
A stack-based buffer overflow vulnerability has been reported to affect QNAP NAS devices running Surveillance Station. If exploite
< 8.1.2-5469
File and directory information exposure vulnerability in SYNO.SurveillanceStation.PersonalSettings.Photo in Synology Surveillance
< 8.1.2-5469
Cross-site scripting (XSS) vulnerability in User Profile in Synology Surveillance Station before 8.1.2-5469 allows remote authenti