Synology Tc500_firmware
9 CVEs affecting Synology Tc500_firmware. Latest disclosed: 2025-03-19. Critical: 3, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-11131 | Critical | 9.8 | 2025-03-19 | A vulnerability regarding out-of-bounds read is found in the video interface. This allows remote attackers to execute arbitrary code via unspecified vectors. T… |
CVE-2024-39349 | Critical | 9.8 | 2024-06-28 | A vulnerability regarding buffer copy without checking size of input ('Classic Buffer Overflow') is found in the libjansson component and it does not affect th… |
CVE-2023-5746 | Critical | 9.8 | 2023-10-25 | A vulnerability regarding use of externally-controlled format string is found in the cgi component. This allows remote attackers to execute arbitrary code via… |
CVE-2024-39350 | High | 7.5 | 2024-06-28 | A vulnerability regarding authentication bypass by spoofing is found in the RTSP functionality. This allows man-in-the-middle attackers to obtain privileges wi… |
CVE-2024-39351 | High | 7.2 | 2024-06-28 | A vulnerability regarding improper neutralization of special elements used in an OS command ('OS Command Injection') is found in the NTP configuration. This al… |
CVE-2023-47802 | High | 7.2 | 2024-06-28 | A vulnerability regarding improper neutralization of special elements used in an OS command ('OS Command Injection') is found in the IP block functionality. Th… |
CVE-2024-5463 | Medium | 6.5 | 2024-06-04 | A vulnerability regarding buffer copy without checking the size of input ('Classic Buffer Overflow') has been found in the login component. This allows remote… |
CVE-2023-47803 | Medium | 5.3 | 2024-06-28 | A vulnerability regarding improper limitation of a pathname to a restricted directory ('Path Traversal') is found in the Language Settings functionality. This… |
CVE-2024-39352 | Medium | 4.9 | 2024-06-28 | A vulnerability regarding incorrect authorization is found in the firmware upgrade functionality. This allows remote authenticated users with administrator pri… |