PT-2026-43581 · Synology · Surveillance Station
Zhao Runzi
·
Published
2026-05-27
·
Updated
2026-05-28
·
CVE-2024-47270
CVSS v3.1
2.7
Low
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Synology Surveillance Station versions prior to 9.2.2-11575
Synology Surveillance Station versions prior to 9.2.2-9575
Description
An improper preservation of permissions issue exists in the Archiving Push functionality. This allows remote authenticated users with administrator privileges to perform limited file write operations via unspecified vectors.
Recommendations
Update to version 9.2.2-11575 or later.
Update to version 9.2.2-9575 or later.
Fix
Improper Preservation of Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Surveillance Station