Synology Product Security Advisory

Synology is committed to customer safety and the ongoing security of our products. We allocate resources to fix and patch vulnerabilities as soon as they are discovered by internal tests, researchers, or customers.

Report Vulnerabilities

To report security issues that affect Synology products, please contact: security@synology.com

Please note that this e-mail address is used for monitoring potential product security issues. Generally speaking, we won’t reply to incoming e-mail messages unless further information is required. For technical support for Synology products, please visit our Support & Service section instead.

PGP Key Information

When you are reporting a vulnerability via e-mail, you can use Synology's Product Security PGP key to encrypt sensitive information.

Synology Product Security Updates

To protect users, Synology does not publicly announce security vulnerabilities until fixes are publicly available, nor are the exact details of such vulnerabilities released. Once fixes are available, vulnerabilities shall be announced on Synology's official website.

Advisory	Severity	Status	Last Updated
Synology-SA-24:23 BeeStation (PWN2OWN 2024)	Critical	Resolved	2024-11-05 15:57:44 UTC+8
Synology-SA-24:22 Replication Service (PWN2OWN 2024)	Critical	Ongoing	2024-11-05 15:16:05 UTC+8
Synology-SA-24:21 Synology Drive Server (PWN2OWN 2024)	Important	Ongoing	2024-11-05 15:15:34 UTC+8
Synology-SA-24:20 DSM (PWN2OWN 2024)	Critical	Ongoing	2024-11-05 15:15:05 UTC+8
Synology-SA-24:19 Synology Photos (PWN2OWN 2024)	Critical	Resolved	2024-11-01 14:14:05 UTC+8
Synology-SA-24:18 BeePhotos (PWN2OWN 2024)	Critical	Resolved	2024-11-01 14:11:57 UTC+8
Synology-SA-24:17 Synology Camera	Critical	Resolved	2024-10-18 16:23:38 UTC+8
Synology-SA-24:16 SRM	Moderate	Resolved	2024-10-18 13:43:07 UTC+8
Synology-SA-24:15 BeeStation	Critical	Resolved	2024-10-17 14:23:28 UTC+8
Synology-SA-24:14 Synology Photos	Moderate	Ongoing	2024-10-16 13:55:20 UTC+8
Synology-SA-24:13 BeePhotos	Moderate	Resolved	2024-10-24 17:11:53 UTC+8
Synology-SA-24:12 GitLab	Critical	Resolved	2024-10-09 08:56:19 UTC+8
Synology-SA-24:11 Synology Active Backup for Business Agent	Moderate	Resolved	2024-09-26 11:44:10 UTC+8
Synology-SA-24:10 Synology Drive Client	Important	Resolved	2024-09-26 11:35:49 UTC+8
Synology-SA-24:09 SRM	Moderate	Resolved	2024-09-09 11:51:10 UTC+8
Synology-SA-24:08 regreSSHion	Not affected	Resolved	2024-07-02 14:25:22 UTC+8
Synology-SA-24:07 Synology Camera	Moderate	Resolved	2024-06-04 17:35:57 UTC+8
Synology-SA-24:06 XZ Utils	Not affected	Resolved	2024-04-01 12:02:16 UTC+8
Synology-SA-24:05 Synology Surveillance Station Client	Important	Resolved	2024-03-28 14:43:22 UTC+8
Synology-SA-24:04 Surveillance Station	Important	Resolved	2024-04-01 10:17:08 UTC+8