PT-2025-49025 · Synology · Synology Unified Controller+1

Steven Lin

Publicado

2025-12-04

Atualizado

2025-12-09

CVE-2024-45539

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Synology DiskStation Manager (DSM) versions prior to 7.2.1-69057-2 Synology DiskStation Manager (DSM) versions prior to 7.2.2-72806 Synology Unified Controller (DSMUC) versions prior to 3.1.4-23079

Description An out-of-bounds write issue exists in the cgi components of the software. This condition allows remote attackers to potentially cause a denial-of-service.

Recommendations Update Synology DiskStation Manager (DSM) to version 7.2.1-69057-2 or later. Update Synology DiskStation Manager (DSM) to version 7.2.2-72806 or later. Update Synology Unified Controller (DSMUC) to version 3.1.4-23079 or later.

Correção

DoS

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

CVE-2024-45539

Produtos afetados

Synology Diskstation Manager

Synology Unified Controller

PT-2025-49025 · Synology · Synology Unified Controller+1

CVE-2024-45539

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8