CVE-2024-29229 | Synology Surveillance Station prior 9.2.0-9289/9.2.0-11289 WebAPI GetLiveViewPath authorization (SA_24_04)

Inserito da Angelo Barbosa | Mar 28, 2024 | CVE

A vulnerability was found in Synology Surveillance Station. It has been declared as problematic. Affected by this vulnerability is the function GetLiveViewPath of the component WebAPI. The manipulation leads to missing authorization.

This vulnerability is known as CVE-2024-29229. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-29229 | Synology Surveillance Station prior 9.2.0-9289/9.2.0-11289 WebAPI GetLiveViewPath authorization (SA_24_04)

Post correlati

CVE-2024-35293 | Schneider Elektronik Series 700 up to 0.1.17.6 missing authentication

CVE-2024-8531 | Schneider Electric Data Center Expert Versions 8.1.1.3 and prior signature verification (SEVD-2024-282-01)

CVE-2024-42051 | Splashtop Streamer up to 3.6.1.x on Windows temp file

CVE-2024-22525 | dnspod-sr 0dfbd37 memory corruption (Issue 61)