CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Cvelist•added 2026/05/27 8:26 a.m.•25 views

CVE-2024-11399

Files or directories accessible to external parties vulnerability in redis-server component in Synology BeeDrive for desktop before 1.3.2-13814 allows local users to conduct denial-of-service attacks via unspecified vectors...

6.8CVSS0.00017EPSS

Exploits0References1

Positive Technologies•added 2026/05/27 12:0 a.m.•7 views

PT-2026-43577

6.8CVSS5.8AI score0.00017EPSS

Exploits0References2

RedhatCVE•added 2025/12/05 3:27 p.m.•1 views

CVE-2025-54158

Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS7.8AI score0.00013EPSS

Exploits0References1

RedhatCVE•added 2025/12/05 3:27 p.m.•3 views

CVE-2025-8074

Origin validation error vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.3-13973 allows local users to write arbitrary files with non-sensitive information via unspecified vectors...

5.6CVSS6.5AI score0.00007EPSS

Exploits0References1

OSV•added 2025/12/04 4:16 p.m.•2 views

CVE-2025-8074

5.6CVSS5.9AI score

Exploits0References1

OSV•added 2025/12/04 4:16 p.m.•0 views

CVE-2025-54160

Improper limitation of a pathname to a restricted directory 'Path Traversal' vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS6.1AI score0.00019EPSS

Exploits0References1

OSV•added 2025/12/04 4:16 p.m.•0 views

CVE-2025-54159

Missing authorization vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows remote attackers to delete arbitrary files via unspecified vectors...

7.5CVSS6AI score0.00109EPSS

Exploits0References1

Cvelist•added 2025/12/04 3:13 p.m.•17 views

CVE-2025-54159

Missing authorization vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows remote attackers to delete arbitrary files via unspecified vectors...

7.5CVSS0.00109EPSS

Exploits0References1

CVE•added 2025/12/04 3:13 p.m.•7 views

CVE-2025-54159

The CVE-2025-54159 entry describes a missing authorization vulnerability in Synology BeeDrive for desktop prior to version 1.4.2-13960, where remote attackers could delete arbitrary files via unspecified vectors. Affected product: BeeDrive for desktop. Root cause: lack of authorization checks in ...

7.5CVSS6.7AI score0.00109EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/12/04 12:0 a.m.•0 views

PT-2025-49037

Name of the Vulnerable Software and Affected Versions Synology BeeDrive for desktop versions prior to 1.4.2-13960 Description A missing authentication check exists for a critical function within BeeDrive. This flaw allows local users to potentially execute arbitrary code through unspecified...

7.8CVSS7.2AI score0.00013EPSS

Exploits0References5

Positive Technologies•added 2025/12/04 12:0 a.m.•1 views

PT-2025-49039

Name of the Vulnerable Software and Affected Versions Synology BeeDrive for desktop versions prior to 1.4.2-13960 Description A path traversal issue exists in BeeDrive. This allows local users to potentially execute arbitrary code. The issue is due to insufficient restriction of file paths. The...

7.8CVSS6.7AI score0.00019EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by