3917 matches found
CVE-2022-49039
Affected software: Synology Drive Client (backup task management). The issue is an out-of-bounds write vulnerability in the backup task management functionality prior to version 3.4.0-15721. Exploitation requires local access with administrator privileges and can allow arbitrary command execution...
CVE-2022-49038
The CVE-2022-49038 vulnerability affects Synology Drive Client, where the OpenSSL DLL component allegedly contains functionality from an untrusted control sphere that enables local users to execute arbitrary code via unspecified vectors. Affected software: Synology Drive Client versions prior to ...
CVE-2022-49038
Inclusion of functionality from untrusted control sphere vulnerability in OpenSSL DLL component in Synology Drive Client before 3.3.0-15082 allows local users to execute arbitrary code via unspecified vectors...
CVE-2022-49038
Inclusion of functionality from untrusted control sphere vulnerability in OpenSSL DLL component in Synology Drive Client before 3.3.0-15082 allows local users to execute arbitrary code via unspecified vectors...
CVE-2022-49037
Insertion of sensitive information into log file vulnerability in proxy settings component in Synology Drive Client before 3.3.0-15082 allows remote authenticated users to obtain sensitive information via unspecified vectors...
CVE-2022-49037
CVE-2022-49037 affects Synology Drive Client before 3.3.0-15082. The vulnerability is an insertion of sensitive information into a log file in the proxy settings component, enabling remote authenticated users to obtain sensitive information via unspecified vectors. Sources from NVD/Red Hat/CVE re...
CVE-2022-49037
Insertion of sensitive information into log file vulnerability in proxy settings component in Synology Drive Client before 3.3.0-15082 allows remote authenticated users to obtain sensitive information via unspecified vectors...
CVE-2023-52946
Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in vss service component in Synology Drive Client before 3.5.0-16084 allows remote attackers to overwrite trivial buffers and crash the client via unspecified vectors...
CVE-2023-52946
Buffer copy without checking size of input 'Classic Buffer Overflow' vulnerability in vss service component in Synology Drive Client before 3.5.0-16084 allows remote attackers to overwrite trivial buffers and crash the client via unspecified vectors...
CVE-2023-52946
CVE-2023-52946 affects Synology Drive Client prior to 3.5.0-16084, specifically the vss service component. The vulnerability is a buffer copy without size check ('Classic Buffer Overflow') that lets a remote attacker overwrite trivial buffers and crash the client via unspecified vectors. Public e...
Synology Drive 安全漏洞
Synology Drive is a collaborative office suite from China-based Synology Inc. The product includes document management, collaborative office and file synchronization and backup features. A security vulnerability exists in Synology Drive before 3.4.0-15721, which stems from an out-of-bounds write...
Synology Drive 安全漏洞
Synology Drive is a collaborative office suite from China-based Synology Inc. The product includes document management, collaborative office and file synchronization and backup features. A security vulnerability exists in Synology Drive prior to version 3.3.0-15082, which stems from the inclusion...
Synology Drive 安全漏洞
Synology Drive is a collaborative office suite from China-based Synology Inc. The product includes document management, collaborative office and file synchronization and backup features. A security vulnerability exists in Synology Drive before 3.4.0-15721, which stems from the presence of a buffe...
PT-2024-6492 · Microsoft · Windows 11 +4
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Microsoft Windows 10 Microsoft Windows 11 Microsoft Windows Server 2016 Microsoft Windows Server 2019 Microsoft Windows Server 2022 Description: A DLL Hijacking caused by drive remapping...
Synology Drive 日志信息泄露漏洞
Synology Drive is a collaborative office suite from China-based Synology Inc. The product includes document management, collaborative office and file synchronization and backup features. A log information disclosure vulnerability exists in Synology Drive versions prior to 3.3.0-15082, which stems...
Synology Drive 安全漏洞
Synology Drive is a collaborative office suite from China-based Synology Inc. The product includes document management, collaborative office and file synchronization and backup features. A security vulnerability exists in Synology Drive prior to version 3.5.0-16084, which stems from the presence ...
Synology Drive 安全漏洞
Synology Drive is a collaborative office suite from China-based Synology Inc. The product includes document management, collaborative office and file synchronization and backup features. A security vulnerability exists in Synology Drive before 3.4.0-15721, which stems from the presence of a buffe...
PT-2024-11895 · Synology · Synology Drive Client
Name of the Vulnerable Software and Affected Versions: Synology Drive Client versions prior to 3.4.0-15721 Description: A buffer copy without checking the size of the input, also known as a 'Classic Buffer Overflow', exists in the backup task management functionality. This issue allows local user...
PT-2024-11894 · Synology · Synology Drive Client
Name of the Vulnerable Software and Affected Versions: Synology Drive Client versions prior to 3.4.0-15721 Description: A buffer copy without checking the size of the input, also known as a 'Classic Buffer Overflow', exists in the connection management functionality. This issue allows local users...
CVE-2024-43999 WordPress Ninja Forms plugin <= 3.8.11 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Saturday Drive Ninja Forms allows Stored XSS.This issue affects Ninja Forms: from n/a through 3.8.11...