8 matches found
CVE-2022-27614
Exposure of sensitive information to an unauthorized actor vulnerability in web server in Synology Media Server before 1.8.1-2876 allows remote attackers to obtain sensitive information via unspecified vectors...
CVE-2022-22683
Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in cgi component in Synology Media Server before 1.8.1-2876 allows remote attackers to execute arbitrary code via unspecified vectors...
Synology Media Server 安全漏洞
Synology Media Server is a media server. buffer overflow vulnerability exists in versions prior to Synology Media Server 1.8.1-2876, which stems from the existence of unchecked input size buffer replication in the cgi component, and can be exploited by remote attackers to execute arbitrary code v...
PT-2022-18519 · Synology · Synology Media Server
Name of the Vulnerable Software and Affected Versions: Synology Media Server versions prior to 1.8.1-2876 Description: The issue allows remote attackers to obtain sensitive information via unspecified vectors, resulting in the exposure of sensitive information to unauthorized actors...
Synology Media Server 信息泄露漏洞
Synology Media Server is a media server. An information disclosure vulnerability exists in Synology Media Server versions prior to 1.8.1-2876, which can be exploited by remote attackers to obtain sensitive information via unspecified vectors...
CVE-2022-22683
Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in cgi component in Synology Media Server before 1.8.1-2876 allows remote attackers to execute arbitrary code via unspecified vectors...
CVE-2021-33180
Improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability in cgi component in Synology Media Server before 1.8.1-2876 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Synology Media Server SQL注入漏洞
Synology Media Server is a media server. A SQL injection vulnerability exists in the cgi component of Synology Media Server before 1.8.1-2876, which can be exploited by an attacker to execute arbitrary SQL commands via an unspecified vector...