Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Synology — Vulnerabilities & Security Advisories 289

Browse all 289 CVE security advisories affecting Synology. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Synology operates primarily in the network-attached storage (NAS) sector, providing hardware and software solutions for data management and backup. With 271 recorded Common Vulnerabilities and Exposures (CVEs), the platform has historically been susceptible to critical security flaws, including remote code execution, cross-site scripting, and privilege escalation vulnerabilities. These issues often stem from insecure default configurations, weak authentication mechanisms, and unpatched web interface components. Notable incidents include the discovery of backdoors in certain firmware versions and widespread exploitation of unauthenticated access points, which allowed attackers to gain full system control. The high volume of CVEs reflects the complexity of its web-based management interfaces and the persistent targeting of IoT devices by threat actors. Users are advised to maintain strict update protocols and disable unnecessary services to mitigate these known risks effectively.

Found 41 results / 289Clear Filters
Top products by Synology: DiskStation Manager (DSM) Synology Router Manager (SRM) Surveillance Station Synology Photo Station Synology DiskStation Manager (DSM) Photo Station Camera Firmware Calendar Synology Drive Client BeeDrive for desktop Media Server Synology Calendar Synology Active Backup for Business Agent Note Station Drive Active Backup for Business Safe Access Download Station Synology SSL VPN Client Synology Download Station Audio Station CardDAV Server Office Presto File Server Synology Drive Server Synology Video Station MailPlus Server SSO Server File Station Chat
CVE IDTitleCVSSSeverityPublished
CVE-2020-27651 Synology Router Manager 安全漏洞 — Synology Router Manager (SRM)CWE-614 5.8 Medium2020-10-29
CVE-2020-27649 Synology Router Manager 信任管理问题漏洞 — Synology Router Manager (SRM)CWE-295 8.3 High2020-10-29
CVE-2019-11823 Synology Router Manager 缓冲区错误漏洞 — Synology Router Manager (SRM)CWE-125 8.6 High2020-05-04
CVE-2018-13292 Synology Router Manager 信息泄露漏洞 — Synology Router Manager (SRM)CWE-200 4.3 -2019-04-01
CVE-2018-13290 Synology Router Manager 信息泄露漏洞 — Synology Router Manager (SRM)CWE-200 6.5 -2019-04-01
CVE-2018-13289 Synology Router Manager 信息泄露漏洞 — Synology Router Manager (SRM)CWE-200 7.5 -2019-04-01
CVE-2018-13287 Synology Router Manager 权限许可和访问控制问题漏洞 — Synology Router Manager (SRM)CWE-276 6.5 -2019-04-01
CVE-2018-13285 Synology Router Manager 操作系统命令注入漏洞 — Synology Router Manager (SRM)CWE-78 8.8 -2019-04-01
CVE-2018-8918 Synology Router Manager 跨站脚本漏洞 — Synology Router Manager (SRM)CWE-79 5.4 -2018-12-24
CVE-2017-12078 Synology Router Manager EZ-Internet 命令注入漏洞 — Synology Router Manager (SRM)CWE-77 8.8 -2018-06-08
CVE-2017-15895 Synology Router Manager 路径遍历漏洞 — Synology Router Manager (SRM)CWE-22 6.5 -2017-12-08

This page lists every published CVE security advisory associated with Synology. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.