cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-49041,https://securityvulnerability.io/vulnerability/CVE-2022-49041,Buffer Copy Vulnerability Affects Synology Drive Client,"A buffer overflow vulnerability exists in the backup task management feature of Synology Drive Client, affecting versions prior to 3.4.0-15721. This issue allows local users with administrative privileges to exploit the system, potentially leading to crashes of the client application through unspecified methods. Users should ensure their systems are updated to mitigate risks associated with this vulnerability.",Synology,Synology Drive Client,4.4,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-09-26T03:34:56.493Z,0
CVE-2022-49040,https://securityvulnerability.io/vulnerability/CVE-2022-49040,Synology Drive Client Exploited by Classic Buffer Overflow,"A buffer overflow issue exists in the connection management functionality of Synology Drive Client, specifically affecting versions prior to 3.4.0-15721. This vulnerability enables local users with administrative rights to exploit the flaw, resulting in a crash of the client application. The attack can be executed through unspecified vectors, potentially leading to disruptions in service and overall system stability.",Synology,Synology Drive Client,4.4,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-09-26T03:34:10.329Z,0
CVE-2022-49039,https://securityvulnerability.io/vulnerability/CVE-2022-49039,Arbitrary Command Execution Vulnerability in Synology Drive Client,"An out-of-bounds write vulnerability exists in the backup task management functionality of Synology Drive Client prior to version 3.4.0-15721. This vulnerability enables local users with administrator privileges to execute arbitrary commands through unspecified vectors, which could lead to potential unauthorized access and manipulation of system resources. Immediate action is recommended to mitigate the associated risks.",Synology,Synology Drive Client,6.7,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-09-26T03:33:29.551Z,0
CVE-2022-49038,https://securityvulnerability.io/vulnerability/CVE-2022-49038,Untrusted Control Sphere Vulnerability Affects Synology Drive Client,"An inclusion of functionality from an untrusted control sphere vulnerability exists within the OpenSSL DLL component of Synology Drive Client prior to version 3.3.0-15082. This flaw permits local users to execute arbitrary code, potentially compromising system integrity through unspecified attack vectors. Users are advised to upgrade to the latest version to mitigate this risk.",Synology,Synology Drive Client,7.8,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-09-26T03:33:01.093Z,0
CVE-2022-49037,https://securityvulnerability.io/vulnerability/CVE-2022-49037,Synology Drive Client vulnerability allows remote access to sensitive information,The Synology Drive Client contains a vulnerability in the proxy settings component that enables the insertion of sensitive information into log files. This flaw allows remote authenticated users to access potentially sensitive data through unspecified vectors before version 3.3.0-15082. Proper security measures should be taken to mitigate the risk associated with this issue.,Synology,Synology Drive Client,6.5,MEDIUM,0.0004799999878741801,false,false,false,false,,false,false,2024-09-26T03:32:31.301Z,0
CVE-2023-52946,https://securityvulnerability.io/vulnerability/CVE-2023-52946,Classic Buffer Overflow Vulnerability Affects Synology Drive Client,A buffer copy without proper size validation in the vss service component of Synology Drive Client prior to version 3.5.0-16084 creates an exploitable scenario for remote attackers. This vulnerability can lead to the overwriting of trivial buffers and potentially crash the client through various unspecified vectors. It emphasizes the critical need for implementing size checks during buffer operations to prevent unauthorized access and ensure system stability.,Synology,Synology Drive Client,8.2,HIGH,0.0004600000102072954,false,false,false,false,,false,false,2024-09-26T03:31:38.479Z,0