cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-22683,https://securityvulnerability.io/vulnerability/CVE-2022-22683,Buffer Overflow Vulnerability in Synology Media Server,"A buffer overflow vulnerability exists in the cgi component of Synology Media Server versions prior to 1.8.1-2876. This vulnerability can be exploited by remote attackers to execute arbitrary code through unspecified vectors, potentially compromising system integrity and confidentiality. Users are advised to update their media servers to the latest version to mitigate potential risks.",Synology,Media Server,9.8,CRITICAL,0.0013699999544769526,false,,false,false,false,,,false,false,,2022-07-28T07:15:00.000Z,0
CVE-2022-27614,https://securityvulnerability.io/vulnerability/CVE-2022-27614,Sensitive Information Exposure in Synology Media Server,"A vulnerability has been identified in Synology Media Server that enables unauthorized access to sensitive information. This flaw affects versions prior to 1.8.1-2876, and it allows remote attackers to exploit unspecified vectors to access private data. Organizations using Synology Media Server should take immediate steps to update their systems to protect against potential data breaches.",Synology,Media Server,7.5,HIGH,0.0012000000569969416,false,,false,false,false,,,false,false,,2022-07-28T07:15:00.000Z,0
CVE-2021-34808,https://securityvulnerability.io/vulnerability/CVE-2021-34808,,Server-Side Request Forgery (SSRF) vulnerability in cgi component in Synology Media Server before 1.8.3-2881 allows remote attackers to access intranet resources via unspecified vectors.,Synology,Media Server,5.8,MEDIUM,0.0013299999991431832,false,,false,false,false,,,false,false,,2021-06-18T03:15:00.000Z,0
CVE-2021-33180,https://securityvulnerability.io/vulnerability/CVE-2021-33180,,Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in cgi component in Synology Media Server before 1.8.1-2876 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.,Synology,Synology Media Server,7.3,HIGH,0.0007399999885819852,false,,false,false,false,,,false,false,,2021-06-01T14:15:00.000Z,0
CVE-2018-8914,https://securityvulnerability.io/vulnerability/CVE-2018-8914,,SQL injection vulnerability in UPnP DMA in Synology Media Server before 1.7.6-2842 and before 1.4-2654 allows remote attackers to execute arbitrary SQL commands via the ObjectID parameter.,Synology,Media Server,7.3,HIGH,0.0008200000156648457,false,,false,false,false,,,false,false,,2018-05-10T00:00:00.000Z,0