16 matches found
CVE-2025-54159
Missing authorization vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows remote attackers to delete arbitrary files via unspecified vectors...
CVE-2025-54160
Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...
CVE-2025-54158
Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...
CVE-2025-54160
Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...
CVE-2025-54158
Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...
CVE-2025-54160
CVE-2025-54160 affects Synology BeeDrive for desktop before 1.4.2-13960, where an improper limitation of a pathname to a restricted directory (path traversal) allows a local user to execute arbitrary code via unspecified vectors. The issue relates to BeeDrive’s handling of file paths and is explo...
EUVD-2025-201165
Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...
CVE-2025-54159
The CVE-2025-54159 entry describes a missing authorization vulnerability in Synology BeeDrive for desktop prior to version 1.4.2-13960, where remote attackers could delete arbitrary files via unspecified vectors. Affected product: BeeDrive for desktop. Root cause: lack of authorization checks in ...
EUVD-2025-201166
Missing authorization vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows remote attackers to delete arbitrary files via unspecified vectors...
CVE-2025-54158
CVE-2025-54158 affects Synology BeeDrive for desktop prior to 1.4.2-13960. The issue is a missing authentication check in a critical function, enabling local users to potentially execute arbitrary code via unspecified vectors. Multiple connected sources (Red Hat, NVD, CVE lists, and vendor adviso...
CVE-2025-54158
Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...
Synology BeeDrive 路径遍历漏洞
Synology BeeDrive is a backup and synchronization appliance from China-based Synology. A path traversal vulnerability exists in Synology BeeDrive versions prior to 1.4.2-13960, which stems from an improperly restricted pathname and could lead to the execution of arbitrary code by a local user...
PT-2025-49037
Name of the Vulnerable Software and Affected Versions Synology BeeDrive for desktop versions prior to 1.4.2-13960 Description A missing authentication check exists for a critical function within BeeDrive. This flaw allows local users to potentially execute arbitrary code through unspecified...
PT-2025-49038
Name of the Vulnerable Software and Affected Versions Synology BeeDrive for desktop versions prior to 1.4.2-13960 Description A missing authorization flaw exists in BeeDrive. This allows remote attackers to delete arbitrary files through unspecified means. Recommendations Update Synology BeeDrive...
Synology BeeDrive 访问控制错误漏洞
Synology BeeDrive is a backup and synchronization appliance from China-based Synology Inc. An access control error vulnerability exists in Synology BeeDrive versions prior to 1.4.2-13960, which stems from a lack of authentication for critical functions and could lead to the execution of arbitrary...
Synology BeeDrive 安全漏洞
Synology BeeDrive is a backup and synchronization appliance from China-based Synology Inc. A security vulnerability exists in Synology BeeDrive versions prior to 1.4.2-13960, which stems from a lack of authorization and could lead to a remote attacker deleting arbitrary files...