Synology Beedrive For Desktop
6 CVEs affecting Synology Beedrive For Desktop. Latest disclosed: 2026-05-27. Critical: 0, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-52945 | High | 7.8 | 2026-05-27 | Uncontrolled search path element vulnerability in OpenSSL DLL component in Synology BeeDrive for desktop before 1.3.2-13814 allows local users to execute arbit… |
CVE-2025-54160 | High | 7.8 | 2025-12-04 | Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 al… |
CVE-2025-54158 | High | 7.8 | 2025-12-04 | Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitr… |
CVE-2025-54159 | High | 7.5 | 2025-12-04 | Missing authorization vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows remote attackers to delete arbitrary files via unspe… |
CVE-2024-11399 | Medium | 6.8 | 2026-05-27 | Files or directories accessible to external parties vulnerability in redis-server component in Synology BeeDrive for desktop before 1.3.2-13814 allows local us… |
CVE-2025-8074 | Medium | 5.6 | 2025-12-04 | Origin validation error vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.3-13973 allows local users to write arbitrary files with non-sens… |