cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-33184,https://securityvulnerability.io/vulnerability/CVE-2021-33184,,Server-Side request forgery (SSRF) vulnerability in task management component in Synology Download Station before 3.8.15-3563 allows remote authenticated users to read arbitrary files via unspecified vectors.,Synology,Synology Download Station,7.7,HIGH,0.000590000010561198,false,,false,false,false,,,false,false,,2021-06-01T14:15:00.000Z,0
CVE-2017-11156,https://securityvulnerability.io/vulnerability/CVE-2017-11156,,"Synology Download Station 3.8.x before 3.8.5-3475 and 3.x before 3.5-2984 uses weak permissions (0777) for ui/dlm/btsearch directory, which allows remote authenticated users to execute arbitrary code by uploading an executable via unspecified vectors.",Synology,Synology Download Station,7.8,HIGH,0.005169999785721302,false,,false,false,false,,,false,false,,2017-08-14T19:29:00.000Z,0
CVE-2017-11149,https://securityvulnerability.io/vulnerability/CVE-2017-11149,,Server-side request forgery (SSRF) vulnerability in Downloader in Synology Download Station 3.8.x before 3.8.5-3475 and 3.x before 3.5-2984 allows remote authenticated users to download arbitrary local files via crafted URI.,Synology,Synology Download Station,6.5,MEDIUM,0.0005499999970197678,false,,false,false,false,,,false,false,,2017-08-14T19:29:00.000Z,0