Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:55 a.m.9 views

CVE-2024-29227

Improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability in Layout.LayoutSave webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to read database containing non-sensitive information and...

5.4CVSS6.6AI score0.00586EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/28 6:8 a.m.16 views

CVE-2024-29227

Improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability in Layout.LayoutSave webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to read database containing non-sensitive information and...

5.4CVSS6.5AI score0.00586EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/28 6:8 a.m.24 views

CVE-2024-29227

Improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability in Layout.LayoutSave webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to read database containing non-sensitive information and...

5.4CVSS6.1AI score0.00586EPSS
Exploits0References1
CVE
CVE
added 2024/03/28 6:8 a.m.66 views

CVE-2024-29227

Synology Surveillance Station is affected by an SQL injection in the Layout.LayoutSave webapi component. The issue, present in versions prior to 9.2.0-9289 and prior to 9.2.0-11289, can be exploited by remote authenticated users to read database contents (non-sensitive data) and may enable a limi...

5.4CVSS6.5AI score0.00586EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder