CVE-2024-50630
19.03.2025, 06:15
Missing authentication for critical function vulnerability in the webapi component in Synology Drive Server before 3.0.4-12699, 3.2.1-23280, 3.5.0-26085 and 3.5.1-26102 allows remote attackers to obtain administrator credentials via unspecified vectors.Enginsight
| Vendor | Product | Version |
|---|---|---|
| synology | drive_server | 𝑥 < 3.0.4-12699 |
| synology | drive_server | 𝑥 < 3.2.1-23280 |
| synology | drive_server | 𝑥 < 3.5.0-26085 |
| synology | drive_server | 𝑥 < 3.5.1-26102 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration