A vulnerability regarding authentication bypass by spoofing is found in the RTSP functionality. This allows man-in-the-middle attackers to obtain privileges without consent via unspecified vectors. The following models with Synology Camera Firmware versions before 1.0.7-0298 may be affected: BC500 and TC500.
oryginał ENCVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HSynology Bc500
HWSynologywszystkie wersjeSynology Bc500 Firmware
OSSynology< 1.0.7-0298Synology Tc500
HWSynologywszystkie wersjeSynology Tc500 Firmware
OSSynology< 1.0.7-0298
Powiązane podatności
Out-of-bounds read w firmware kamer Synology umożliwia RCE
Buffer Overflow w firmware kamer Synology BC500/TC500 umożliwia RCE
A vulnerability regarding use of externally-controlled format string is found in the cgi component. This allow...
A vulnerability regarding improper neutralization of special elements used in an OS command ('OS Command Injec...
A vulnerability regarding improper neutralization of special elements used in an OS command ('OS Command Injec...