Synology Media Server

5 CVEs affecting Synology Media Server. Latest disclosed: 2024-12-18. Critical: 1, High: 2.

Top CVEs affecting Synology Media Server
CVESeverityScorePublishedSummary
CVE-2022-22683Critical10.02022-07-28Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology Media Server before 1.8.1-2876 allows remote…
CVE-2024-4464High7.52024-12-18Authorization bypass through user-controlled key vulnerability in streaming service in Synology Media Server before 1.4-2680, 2.0.5-3152 and 2.2.0-3325 allows…
CVE-2018-8914High7.32018-05-10SQL injection vulnerability in UPnP DMA in Synology Media Server before 1.7.6-2842 and before 1.4-2654 allows remote attackers to execute arbitrary SQL command…
CVE-2021-34808Medium5.82021-06-18Server-Side Request Forgery (SSRF) vulnerability in cgi component in Synology Media Server before 1.8.3-2881 allows remote attackers to access intranet resourc…
CVE-2022-27614Medium5.32022-07-28Exposure of sensitive information to an unauthorized actor vulnerability in web server in Synology Media Server before 1.8.1-2876 allows remote attackers to ob…