Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Synology — Vulnerabilities & Security Advisories 289

Browse all 289 CVE security advisories affecting Synology. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Synology operates primarily in the network-attached storage (NAS) sector, providing hardware and software solutions for data management and backup. With 271 recorded Common Vulnerabilities and Exposures (CVEs), the platform has historically been susceptible to critical security flaws, including remote code execution, cross-site scripting, and privilege escalation vulnerabilities. These issues often stem from insecure default configurations, weak authentication mechanisms, and unpatched web interface components. Notable incidents include the discovery of backdoors in certain firmware versions and widespread exploitation of unauthenticated access points, which allowed attackers to gain full system control. The high volume of CVEs reflects the complexity of its web-based management interfaces and the persistent targeting of IoT devices by threat actors. Users are advised to maintain strict update protocols and disable unnecessary services to mitigate these known risks effectively.

Top products by Synology: DiskStation Manager (DSM) Synology Router Manager (SRM) Surveillance Station Synology Photo Station Synology DiskStation Manager (DSM) Photo Station Camera Firmware Calendar Synology Drive Client BeeDrive for desktop Media Server Synology Calendar Synology Active Backup for Business Agent Note Station Drive Active Backup for Business Safe Access Download Station Synology SSL VPN Client Synology Download Station Audio Station CardDAV Server Office Presto File Server Synology Drive Server Synology Video Station MailPlus Server SSO Server File Station Chat
CVE IDTitleCVSSSeverityPublished
CVE-2026-2237 Synology DSM 安全漏洞 — Storage ManagerCWE-598 6.2 Medium2026-05-27
CVE-2025-66593 Synology Assistant 访问控制错误漏洞 — Synology AssistantCWE-346 6.1 Medium2026-05-27
CVE-2025-66592 Synology Active Backup for Business Agent 访问控制错误漏洞 — Synology Active Backup for Business AgentCWE-346 6.1 Medium2026-05-27
CVE-2025-30028 Synology Active Backup for Business SQL注入漏洞 — Active Backup for BusinessCWE-89 8.6 High2026-05-27
CVE-2025-14713 Synology C2 Identity Edge Server 安全漏洞 — C2 Identity Edge ServerCWE-749 7.5 High2026-05-27
CVE-2025-13593 Synology ActiveProtect Agent 访问控制错误漏洞 — ActiveProtect AgentCWE-346 6.1 Medium2026-05-27
CVE-2025-12686 Synology BeeStation OS 安全漏洞 — BeeStation OSCWE-120 9.8 Critical2026-05-27
CVE-2025-13392 Synology DiskStation Manager(DSM) 代码问题漏洞 — DiskStation Manager (DSM)CWE-754 8.1 High2026-05-27
CVE-2025-13167 Synology Contacts for DSM 安全漏洞 — Synology ContactsCWE-79 5.4 Medium2026-05-27
CVE-2025-10466 Synology Safe Access 跨站脚本漏洞 — Safe AccessCWE-79 5.9 Medium2026-05-27
CVE-2024-47272 Synology Surveillance Station 安全漏洞 — Surveillance StationCWE-863 2.7 Low2026-05-27
CVE-2024-47271 Synology Surveillance Station 安全漏洞 — Surveillance StationCWE-522 4.9 Medium2026-05-27
CVE-2024-47270 Synology Surveillance Station 安全漏洞 — Surveillance StationCWE-281 2.7 Low2026-05-27
CVE-2024-47269 Synology Surveillance Station 安全漏洞 — Surveillance StationCWE-319 4.9 Medium2026-05-27
CVE-2024-47268 Synology Surveillance Station 安全漏洞 — Surveillance StationCWE-862 4.9 Medium2026-05-27
CVE-2024-47267 Synology Surveillance Station 路径遍历漏洞 — Surveillance StationCWE-22 2.7 Low2026-05-27
CVE-2024-11399 Synology BeeDrive 安全漏洞 — BeeDrive for desktopCWE-552 6.8 Medium2026-05-27
CVE-2023-52945 Synology BeeDrive 代码问题漏洞 — BeeDrive for desktopCWE-427 7.8 High2026-05-27
CVE-2021-47961 Synology SSL VPN Client 安全漏洞 — Synology SSL VPN ClientCWE-256 8.1 High2026-04-10
CVE-2021-47960 Synology SSL VPN Client 安全漏洞 — Synology SSL VPN ClientCWE-552 6.5 Medium2026-04-10
CVE-2026-3091 Synology Presto Client 代码问题漏洞 — Synology Presto ClientCWE-427 6.7 Medium2026-02-24
CVE-2025-8074 Synology BeeDrive 访问控制错误漏洞 — BeeDrive for desktopCWE-346 5.6 Medium2025-12-04
CVE-2025-54160 Synology BeeDrive 路径遍历漏洞 — BeeDrive for desktopCWE-22 7.8 High2025-12-04
CVE-2025-54159 Synology BeeDrive 安全漏洞 — BeeDrive for desktopCWE-862 7.5 High2025-12-04
CVE-2025-54158 Synology BeeDrive 访问控制错误漏洞 — BeeDrive for desktopCWE-306 7.8 High2025-12-04
CVE-2025-2848 Synology Mail Server 安全漏洞 — Synology Mail ServerCWE-862 6.3 Medium2025-12-04
CVE-2025-29846 Synology Router Manager 路径遍历漏洞 — Synology Router Manager (SRM)CWE-22 7.2 High2025-12-04
CVE-2025-29845 Synology Router Manager 路径遍历漏洞 — Synology Router Manager (SRM)CWE-22 4.3 Medium2025-12-04
CVE-2025-29844 Synology Router Manager 路径遍历漏洞 — Synology Router Manager (SRM)CWE-22 4.3 Medium2025-12-04
CVE-2025-29843 Synology Router Manager 路径遍历漏洞 — Synology Router Manager (SRM)CWE-22 5.4 Medium2025-12-04

This page lists every published CVE security advisory associated with Synology. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.