EUVD-2024-54100

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

SQL injection vulnerability in Synology Drive Server allows remote command injection by attackers

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2024-50631	19 Mar 202506:52	–	circl
CNNVD	Synology Drive Server SQL注入漏洞	19 Mar 202500:00	–	cnnvd
CVE	CVE-2024-50631	19 Mar 202505:50	–	cve
Cvelist	CVE-2024-50631	19 Mar 202505:50	–	cvelist
NVD	CVE-2024-50631	19 Mar 202506:15	–	nvd
OpenVAS	Synology BeeStation (BSM) Multiple Vulnerabilities (Synology_SA_24_21) - Active Check	19 Dec 202500:00	–	openvas
OpenVAS	Synology DiskStation Manager (DSM) Multiple Vulnerabilities (Synology_SA_24_21) - Active Check	19 Dec 202500:00	–	openvas
Positive Technologies	PT-2025-11663	19 Mar 202500:00	–	ptsecurity
RedhatCVE	CVE-2024-50631	21 Mar 202506:19	–	redhatcve
Vulnrichment	CVE-2024-50631	19 Mar 202505:50	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "ff3e7a0b-20b2-3281-939f-d2c3b79a508d",
        "vendor": {
          "name": "Synology"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "21aca02e-1bc3-30cd-bfae-d6a7637f3648",
        "product": {
          "name": "Synology Drive Server"
        },
        "product_version": "* <3.2.1-23280"
      },
      {
        "id": "648518f5-fe43-3c8b-b5a5-7581838749b5",
        "product": {
          "name": "Synology Drive Server"
        },
        "product_version": "* <3.5.0-26085"
      },
      {
        "id": "bf9ffd93-7746-3c9f-b28c-9d9676456683",
        "product": {
          "name": "Synology Drive Server"
        },
        "product_version": "* <3.0.4-12699"
      },
      {
        "id": "c346f884-fa52-3eca-889c-a1d2b0c79a4a",
        "product": {
          "name": "Synology Drive Server"
        },
        "product_version": "* <3.5.1-26102"
      }
    ]
  }
]

Source	Link
synology	www.synology.com/en-global/security/advisory/Synology_SA_24_21
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-50631

03 Oct 2025 20:07Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.17.5

EPSS0.01226

SSVC