Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Synology — Vulnerabilities & Security Advisories 271

Browse all 271 CVE security advisories affecting Synology. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Synology operates primarily in the network-attached storage (NAS) sector, providing hardware and software solutions for data management and backup. With 271 recorded Common Vulnerabilities and Exposures (CVEs), the platform has historically been susceptible to critical security flaws, including remote code execution, cross-site scripting, and privilege escalation vulnerabilities. These issues often stem from insecure default configurations, weak authentication mechanisms, and unpatched web interface components. Notable incidents include the discovery of backdoors in certain firmware versions and widespread exploitation of unauthenticated access points, which allowed attackers to gain full system control. The high volume of CVEs reflects the complexity of its web-based management interfaces and the persistent targeting of IoT devices by threat actors. Users are advised to maintain strict update protocols and disable unnecessary services to mitigate these known risks effectively.

Top products by Synology: DiskStation Manager (DSM) Synology Router Manager (SRM) Surveillance Station Synology Photo Station Synology DiskStation Manager (DSM) Photo Station Camera Firmware Calendar Synology Drive Client Media Server Synology Calendar Note Station BeeDrive for desktop Synology Active Backup for Business Agent Drive Download Station Audio Station Synology SSL VPN Client Synology Download Station Active Backup for Business Chat SSO Server Synology Video Station Application Service Synology Drive Server Office CardDAV Server Safe Access Presto File Server MailPlus Server
CVE IDTitleCVSSSeverityPublished
CVE-2021-27646 Synology DiskStation Manager 资源管理错误漏洞 — Synology DiskStation Manager (DSM)CWE-416 9.8 Critical2021-03-12
CVE-2021-26569 Synology DiskStation Manager 竞争条件问题漏洞 — Synology DiskStation Manager (DSM)CWE-366 9.8 Critical2021-03-12
CVE-2021-27647 Synology DiskStation Manager 缓冲区错误漏洞 — Synology DiskStation Manager (DSM)CWE-125 9.8 Critical2021-03-12
CVE-2021-26566 Synology DiskStation Manager 信息泄露漏洞 — Synology DiskStation Manager (DSM)CWE-201 8.3 High2021-02-26
CVE-2021-26564 Synology DiskStation Manager 安全漏洞 — Synology DiskStation Manager (DSM)CWE-319 8.3 High2021-02-26
CVE-2021-26565 Synology DiskStation Manager 安全漏洞 — Synology DiskStation Manager (DSM)CWE-319 8.3 High2021-02-26
CVE-2021-26563 Synology DiskStation Manager 访问控制错误漏洞 — DiskStation Manager (DSM)CWE-863 8.2 High2021-02-26
CVE-2021-26562 Synology DiskStation Manager 缓冲区错误漏洞 — Synology DiskStation Manager (DSM)CWE-787 9.0 Critical2021-02-26
CVE-2021-26561 Synology DiskStation Manager 缓冲区错误漏洞 — Synology DiskStation Manager (DSM)CWE-121 9.0 Critical2021-02-26
CVE-2021-26560 Synology DiskStation Manager 安全漏洞 — Synology DiskStation Manager (DSM)CWE-319 9.0 Critical2021-02-26
CVE-2020-27660 Synology SafeAccess SQL注入漏洞 — Safe AccessCWE-89 9.6 Critical2020-11-30
CVE-2020-27659 Synology SafeAccess 跨站脚本漏洞 — Safe AccessCWE-79 8.4 High2020-11-30
CVE-2020-27650 Synology DiskStation Manager 安全漏洞 — DiskStation Manager (DSM)CWE-614 5.8 Medium2020-10-29
CVE-2020-27652 Synology DiskStation Manager 加密问题漏洞 — DiskStation Manager (DSM)CWE-327 8.3 High2020-10-29
CVE-2020-27656 Synology DiskStation Manager 信息泄露漏洞 — DiskStation Manager (DSM)CWE-319 6.5 Medium2020-10-29
CVE-2020-27648 Synology DiskStation Manager 信任管理问题漏洞 — DiskStation Manager (DSM)CWE-295 8.3 High2020-10-29
CVE-2020-27657 Synology Router Manager 安全漏洞 — Synology Router Manager (SRM)CWE-319 6.5 Medium2020-10-29
CVE-2020-27658 Synology Router Manager 安全漏洞 — Synology Router Manager (SRM)CWE-1004 7.1 High2020-10-29
CVE-2020-27654 Synology Router Manager 访问控制错误漏洞 — Synology Router Manager (SRM)CWE-269 9.8 Critical2020-10-29
CVE-2020-27655 Synology Router Manager 访问控制错误漏洞 — Synology Router Manager (SRM)CWE-269 6.5 Medium2020-10-29
CVE-2020-27651 Synology Router Manager 安全漏洞 — Synology Router Manager (SRM)CWE-614 5.8 Medium2020-10-29
CVE-2020-27653 Synology Router Manager 加密问题漏洞 — Synology Router Manager (SRM)CWE-327 8.3 High2020-10-29
CVE-2020-27649 Synology Router Manager 信任管理问题漏洞 — Synology Router Manager (SRM)CWE-295 8.3 High2020-10-29
CVE-2019-11823 Synology Router Manager 缓冲区错误漏洞 — Synology Router Manager (SRM)CWE-125 8.6 High2020-05-04
CVE-2019-11827 Synology Note Station 跨站脚本漏洞 — Note StationCWE-79 6.5 Medium2019-06-30
CVE-2019-11828 Synology Office 跨站脚本漏洞 — OfficeCWE-79 5.5 Medium2019-06-30
CVE-2019-11829 Synology Calendar 操作系统命令注入漏洞 — CalendarCWE-78 7.3 High2019-06-30
CVE-2019-11821 Synology Photo Station SQL注入漏洞 — Photo StationCWE-89 7.3 High2019-06-30
CVE-2019-11822 Synology Photo Station 路径遍历漏洞 — Photo StationCWE-23 4.3 Medium2019-06-30
CVE-2019-11825 Synology Calendar 跨站脚本漏洞 — CalendarCWE-79 6.5 Medium2019-06-30

This page lists every published CVE security advisory associated with Synology. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.