Synology Audio Station — known CVE vulnerabilities
Every CVE whose affected-product data names Synology Audio Station, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-27612 — CVSS 7.3 (high): Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology Audio Station before…
CVE-2015-9104 — CVSS 5.4 (medium): Cross-site scripting (XSS) vulnerabilities in Synology Audio Station 5.1 before 5.1-2550 and 5.4 before 5.4-2857 allows remote…
CVE-2017-15888 — CVSS 5.4 (medium): Cross-site scripting (XSS) vulnerability in Custom Internet Radio List in Synology Audio Station before 6.3.0-3260 allows remote…
CVE-2022-27611 — CVSS 5.4 (medium): Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology Audio Station…