NotCVE - vendor:"Synology" product:"Synology Drive Client" version:"

6 results (0.005 seconds)

CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-49041

https://notcve.org/view.php?id=CVE-2022-49041

26 Sep 2024 — Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to crash the client via unspecified vectors. • https://www.synology.com/en-global/security/advisory/Synology_SA_24_10 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-49040

https://notcve.org/view.php?id=CVE-2022-49040

26 Sep 2024 — Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in connection management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to crash the client via unspecified vectors. • https://www.synology.com/en-global/security/advisory/Synology_SA_24_10 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •

CVSS: 6.7EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-49039

https://notcve.org/view.php?id=CVE-2022-49039

26 Sep 2024 — Out-of-bounds write vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to execute arbitrary commands via unspecified vectors. • https://www.synology.com/en-global/security/advisory/Synology_SA_24_10 • CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-49038

https://notcve.org/view.php?id=CVE-2022-49038

26 Sep 2024 — Inclusion of functionality from untrusted control sphere vulnerability in OpenSSL DLL component in Synology Drive Client before 3.3.0-15082 allows local users to execute arbitrary code via unspecified vectors. • https://www.synology.com/en-global/security/advisory/Synology_SA_24_10 • CWE-829: Inclusion of Functionality from Untrusted Control Sphere •

CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2022-49037

https://notcve.org/view.php?id=CVE-2022-49037

26 Sep 2024 — Insertion of sensitive information into log file vulnerability in proxy settings component in Synology Drive Client before 3.3.0-15082 allows remote authenticated users to obtain sensitive information via unspecified vectors. • https://www.synology.com/en-global/security/advisory/Synology_SA_24_10 • CWE-532: Insertion of Sensitive Information into Log File •

CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2023-52946

https://notcve.org/view.php?id=CVE-2023-52946

26 Sep 2024 — Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in vss service component in Synology Drive Client before 3.5.0-16084 allows remote attackers to overwrite trivial buffers and crash the client via unspecified vectors. • https://www.synology.com/en-global/security/advisory/Synology_SA_24_10 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •