Synology Tc500

9 CVEs affecting Synology Tc500. Latest disclosed: 2025-03-19. Critical: 3, High: 3.

Top CVEs affecting Synology Tc500
CVESeverityScorePublishedSummary
CVE-2024-11131Critical9.82025-03-19A vulnerability regarding out-of-bounds read is found in the video interface. This allows remote attackers to execute arbitrary code via unspecified vectors. T…
CVE-2024-39349Critical9.82024-06-28A vulnerability regarding buffer copy without checking size of input ('Classic Buffer Overflow') is found in the libjansson component and it does not affect th…
CVE-2023-5746Critical9.82023-10-25A vulnerability regarding use of externally-controlled format string is found in the cgi component. This allows remote attackers to execute arbitrary code via…
CVE-2024-39350High7.52024-06-28A vulnerability regarding authentication bypass by spoofing is found in the RTSP functionality. This allows man-in-the-middle attackers to obtain privileges wi…
CVE-2024-39351High7.22024-06-28A vulnerability regarding improper neutralization of special elements used in an OS command ('OS Command Injection') is found in the NTP configuration. This al…
CVE-2023-47802High7.22024-06-28A vulnerability regarding improper neutralization of special elements used in an OS command ('OS Command Injection') is found in the IP block functionality. Th…
CVE-2024-5463Medium6.52024-06-04A vulnerability regarding buffer copy without checking the size of input ('Classic Buffer Overflow') has been found in the login component. This allows remote…
CVE-2023-47803Medium5.32024-06-28A vulnerability regarding improper limitation of a pathname to a restricted directory ('Path Traversal') is found in the Language Settings functionality. This…
CVE-2024-39352Medium4.92024-06-28A vulnerability regarding incorrect authorization is found in the firmware upgrade functionality. This allows remote authenticated users with administrator pri…