Carddav Server Synology Carddav Server

Do you want an email whenever new security vulnerabilities are reported in Synology Carddav Server?

By the Year

In 2022 there have been 1 vulnerability in Synology Carddav Server with an average score of 8.8 out of ten. Carddav Server did not have any published security vulnerabilities last year. That is, 1 more vulnerability have already been reported in 2022 as compared to last year.

Year Vulnerabilities Average Score
2022 1 8.80
2021 0 0.00
2020 0 0.00
2019 0 0.00
2018 1 5.40

It may take a day or so for new Carddav Server vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Synology Carddav Server Security Vulnerabilities

Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in webapi component in Synology CardDAV Server before 6.0.10-0153

CVE-2022-27613 8.8 - High - July 28, 2022

Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in webapi component in Synology CardDAV Server before 6.0.10-0153 allows remote authenticated users to inject SQL commands via unspecified vectors.

SQL Injection

Cross-site scripting (XSS) vulnerability in Address Book Editor in Synology CardDAV Server before 6.0.8-0086

CVE-2018-8928 5.4 - Medium - July 05, 2018

Cross-site scripting (XSS) vulnerability in Address Book Editor in Synology CardDAV Server before 6.0.8-0086 allows remote authenticated users to inject arbitrary web script or HTML via the (1) family_name, (2) given_name, or (3) additional_name parameter.

XSS

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Synology Carddav Server or by Synology? Click the Watch button to subscribe.

Synology
Vendor

subscribe