Synology Note Station

Do you want an email whenever new security vulnerabilities are reported in Synology Note Station?

By the Year

In 2024 there have been 0 vulnerabilities in Synology Note Station . Note Station did not have any published security vulnerabilities last year.

Year	Vulnerabilities	Average Score
2024	0	0.00
2023	0	0.00
2022	1	5.90
2021	0	0.00
2020	0	0.00
2019	1	5.40
2018	2	5.40

It may take a day or so for new Note Station vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Synology Note Station Security Vulnerabilities

Cleartext transmission of sensitive information vulnerability in authentication management in Synology Note Station Client before 2.2.2-609

CVE-2022-27619 5.9 - Medium - August 03, 2022

Cleartext transmission of sensitive information vulnerability in authentication management in Synology Note Station Client before 2.2.2-609 allows man-in-the-middle attackers to obtain sensitive information via unspecified vectors.

Cleartext Transmission of Sensitive Information

Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Shard in Synology Note Station before 2.5.3-0863

CVE-2019-11827 5.4 - Medium - June 30, 2019

Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Shard in Synology Note Station before 2.5.3-0863 allows remote attackers to inject arbitrary web script or HTML via the object_id parameter.

XSS

Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology Note Station before 2.5.1-0844

CVE-2018-8911 5.4 - Medium - May 09, 2018

Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology Note Station before 2.5.1-0844 allows remote authenticated users to inject arbitrary web script or HTML via malicious attachments.

XSS

Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Note in Synology Note Station before 2.5.1-0844

CVE-2018-8912 5.4 - Medium - May 09, 2018

Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Note in Synology Note Station before 2.5.1-0844 allows remote authenticated users to inject arbitrary web script or HTML via the commit_msg parameter.

XSS

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Synology Note Station or by Synology? Click the Watch button to subscribe.

Synology
Vendor

Synology Note Station
Product

By the Year

Recent Synology Note Station Security Vulnerabilities

Cleartext transmission of sensitive information vulnerability in authentication management in Synology Note Station Client before 2.2.2-609 CVE-2022-27619 5.9 - Medium - August 03, 2022

Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Shard in Synology Note Station before 2.5.3-0863 CVE-2019-11827 5.4 - Medium - June 30, 2019

Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology Note Station before 2.5.1-0844 CVE-2018-8911 5.4 - Medium - May 09, 2018

Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Note in Synology Note Station before 2.5.1-0844 CVE-2018-8912 5.4 - Medium - May 09, 2018