Synology Download Station
By the Year
In 2024 there have been 0 vulnerabilities in Synology Download Station . Download Station did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 4 | 7.40 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Download Station vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Synology Download Station Security Vulnerabilities
Server-Side Request Forgery (SSRF) vulnerability in task management component in Synology Download Station before 3.8.16-3566
CVE-2021-34811
4.3 - Medium
- June 18, 2021
Server-Side Request Forgery (SSRF) vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to access intranet resources via unspecified vectors.
XSPA
Improper privilege management vulnerability in cgi component in Synology Download Station before 3.8.16-3566
CVE-2021-34810
8.8 - High
- June 18, 2021
Improper privilege management vulnerability in cgi component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to execute arbitrary code via unspecified vectors.
Improper Privilege Management
Improper neutralization of special elements used in a command ('Command Injection') vulnerability in task management component in Synology Download Station before 3.8.16-3566
CVE-2021-34809
8.8 - High
- June 18, 2021
Improper neutralization of special elements used in a command ('Command Injection') vulnerability in task management component in Synology Download Station before 3.8.16-3566 allows remote authenticated users to execute arbitrary code via unspecified vectors.
Command Injection
Server-Side request forgery (SSRF) vulnerability in task management component in Synology Download Station before 3.8.15-3563
CVE-2021-33184
7.7 - High
- June 01, 2021
Server-Side request forgery (SSRF) vulnerability in task management component in Synology Download Station before 3.8.15-3563 allows remote authenticated users to read arbitrary files via unspecified vectors.
XSPA
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Synology Download Station or by Synology? Click the Watch button to subscribe.
