Publish Time: 2023-08-17 19:07:37 UTC+8
Last Updated: 2023-10-25 10:23:08 UTC+8
Abstract
A vulnerability allows remote attackers to execute arbitrary code via a susceptible version of Synology Camera BC500 Firmware and Synology Camera TC500 Firmware.
Affected Products
Product | Severity | Fixed Release Availability |
---|---|---|
BC500 | Critical | Upgrade to 1.0.5-0185 or above. |
TC500 | Critical | Upgrade to 1.0.5-0185 or above. |
Mitigation
Setting up firewall rules to allow only trusted clients to connect can be used as a temporary mitigation.
Detail
Acknowledgement
chumen77(GAO JUYANG) from WeBin Lab of DbappSecurity Co.,Ltd.
Revision
Revision | Date | Description |
---|---|---|
1 | 2023-08-17 | Initial public release. |
2 | 2023-10-24 | Disclosed vulnerability details. |