CVE-2024-39352

A vulnerability regarding incorrect authorization is found in the firmware upgrade functionality. This allows remote authenticated users with administrator privileges to bypass firmware integrity check via unspecified vectors. The following models with Synology Camera Firmware versions before...

CVE-2024-39350

A vulnerability regarding authentication bypass by spoofing is found in the RTSP functionality. This allows man-in-the-middle attackers to obtain privileges without consent via unspecified vectors. The following models with Synology Camera Firmware versions before 1.0.7-0298 may be affected: BC50...

EUVD-2023-51897

Malicious code in bioql PyPI...

EUVD-2023-58032

Malicious code in bioql PyPI...

EUVD-2024-37912

Malicious code in bioql PyPI...

EUVD-2023-51898

Malicious code in bioql PyPI...

EUVD-2024-37913

Malicious code in bioql PyPI...

EUVD-2024-37915

Malicious code in bioql PyPI...

EUVD-2024-54109

Malicious code in bioql PyPI...

CVE-2024-5463

A vulnerability regarding buffer copy without checking the size of input 'Classic Buffer Overflow' has been found in the login component. This allows remote attackers to write specific files containing non-sensitive information and conduct limited denial-of-service attacks via unspecified vectors...

CVE-2023-47803

A vulnerability regarding improper limitation of a pathname to a restricted directory 'Path Traversal' is found in the Language Settings functionality. This allows remote attackers to read specific files containing non-sensitive information via unspecified vectors. The following models with...

CVE-2023-5746

A vulnerability regarding use of externally-controlled format string is found in the cgi component. This allows remote attackers to execute arbitrary code via unspecified vectors. The following models with Synology Camera Firmware versions before 1.0.5-0185 may be affected: BC500 and TC500...

CVE-2023-47802

A vulnerability regarding improper neutralization of special elements used in an OS command 'OS Command Injection' is found in the IP block functionality. This allows remote authenticated users with administrator privileges to execute arbitrary commands via unspecified vectors. The following mode...

CVE-2024-11131

A vulnerability regarding out-of-bounds read is found in the video interface. This allows remote attackers to execute arbitrary code via unspecified vectors. The following models with Synology Camera Firmware versions before 1.2.0-0525 may be affected: BC500, CC400W and TC500...

PT-2025-12371

Name of the Vulnerable Software and Affected Versions nr modem affected versions not specified Description The software may experience a system crash because of improper input validation. This can result in a remote denial of service, and does not require additional execution privileges...

CVE-2024-11131

A vulnerability regarding out-of-bounds read is found in the video interface. This allows remote attackers to execute arbitrary code via unspecified vectors. The following models with Synology Camera Firmware versions before 1.2.0-0525 may be affected: BC500, CC400W and TC500...

CVE-2024-11131

CVE-2024-11131 is a real vulnerability affecting Synology Camera Firmware prior to 1.2.0-0525 (models: BC500, CC400W, TC500). The issue is an out-of-bounds read in the video interface that can allow remote code execution. Affected firmware versions: 1.2.0-0525 and earlier. Reported exploitation d...

CVE-2024-11131

A vulnerability regarding out-of-bounds read is found in the video interface. This allows remote attackers to execute arbitrary code via unspecified vectors. The following models with Synology Camera Firmware versions before 1.2.0-0525 may be affected: BC500, CC400W and TC500...

CVE-2024-11131

A vulnerability regarding out-of-bounds read is found in the video interface. This allows remote attackers to execute arbitrary code via unspecified vectors. The following models with Synology Camera Firmware versions before 1.2.0-0525 may be affected: BC500, CC400W and TC500...

Synology Camera Firmware 缓冲区错误漏洞

Synology Camera Firmware is a webcam firmware from Synology China. A buffer error vulnerability exists in Synology Camera Firmware versions prior to 1.2.0-0525, which stems from an out-of-bounds read in the video interface, which could lead to the execution of arbitrary code by a remote attacker...