CVE-2024-11131

Name of the Vulnerable Software and Affected Versions Synology Camera Firmware versions prior to 1.2.0-0525

Description A vulnerability regarding out-of-bounds read is found in the video interface, allowing remote attackers to execute arbitrary code via unspecified vectors. The affected models include BC500, CC400W, and TC500.

Recommendations For Synology Camera Firmware versions prior to 1.2.0-0525, update the firmware to version 1.2.0-0525 or later to resolve the issue. As a temporary workaround, consider restricting access to the video interface until a patch is available.