PT-2026-43583 · Synology · Surveillance Station

Zhao Runzi

Published

2026-05-27

Updated

2026-05-27

CVE-2024-47272

CVSS v3.1

2.7

Low

Vector

AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

Incorrect authorization vulnerability in IO Module functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to limited file write via unspecified vectors.

Fix

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863

Related Identifiers

CVE-2024-47272

Affected Products

Surveillance Station

PT-2026-43583 · Synology · Surveillance Station

CVE-2024-47272

Weakness Enumeration

Related Identifiers

Affected Products

References · 2