Synology Note Station
By the Year
In 2024 there have been 0 vulnerabilities in Synology Note Station . Note Station did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 1 | 5.90 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 1 | 5.40 |
2018 | 2 | 5.40 |
It may take a day or so for new Note Station vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Synology Note Station Security Vulnerabilities
Cleartext transmission of sensitive information vulnerability in authentication management in Synology Note Station Client before 2.2.2-609
CVE-2022-27619
5.9 - Medium
- August 03, 2022
Cleartext transmission of sensitive information vulnerability in authentication management in Synology Note Station Client before 2.2.2-609 allows man-in-the-middle attackers to obtain sensitive information via unspecified vectors.
Cleartext Transmission of Sensitive Information
Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Shard in Synology Note Station before 2.5.3-0863
CVE-2019-11827
5.4 - Medium
- June 30, 2019
Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Shard in Synology Note Station before 2.5.3-0863 allows remote attackers to inject arbitrary web script or HTML via the object_id parameter.
XSS
Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology Note Station before 2.5.1-0844
CVE-2018-8911
5.4 - Medium
- May 09, 2018
Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology Note Station before 2.5.1-0844 allows remote authenticated users to inject arbitrary web script or HTML via malicious attachments.
XSS
Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Note in Synology Note Station before 2.5.1-0844
CVE-2018-8912
5.4 - Medium
- May 09, 2018
Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Note in Synology Note Station before 2.5.1-0844 allows remote authenticated users to inject arbitrary web script or HTML via the commit_msg parameter.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Synology Note Station or by Synology? Click the Watch button to subscribe.