Synology Video Station vulnerabilities
2 known vulnerabilities affecting synology/synology_video_station.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2021-33181P3CRITICALCVSS 9.1≥ unspecified, < 2.4.10-16322021-06-01
CVE-2021-33181 [CRITICAL] CWE-918 CVE-2021-33181: Server-Side Request Forgery (SSRF) vulnerability in webapi component in Synology Video Station befor
Server-Side Request Forgery (SSRF) vulnerability in webapi component in Synology Video Station before 2.4.10-1632 allows remote authenticated users to send arbitrary request to intranet resources via unspecified vectors.
nvd
CVE-2017-9556P4MEDIUMCVSS 5.4vbefore 2.3.0-14352017-08-11
CVE-2017-9556 [MEDIUM] CWE-79 CVE-2017-9556: Cross-site scripting (XSS) vulnerability in Video Metadata Editor in Synology Video Station before 2
Cross-site scripting (XSS) vulnerability in Video Metadata Editor in Synology Video Station before 2.3.0-1435 allows remote authenticated attackers to inject arbitrary web script or HTML via the title parameter.
nvd