Synology-SA-24:17 Synology Camera

Publish Time: 2024-10-18 16:23:38 UTC+8

Last Updated: 2024-10-18 16:23:38 UTC+8

Severity
Critical
Status
Resolved

Abstract

The vulnerabilities allow remote attackers to execute arbitrary code, remote attackers to bypass security constraints and remote attackers to conduct denial-of-service attacks via a susceptible version of Synology Camera BC500 Firmware, Synology Camera TC500 Firmware and Synology Camera CC400W Firmware.

Affected Products

Product Severity Fixed Release Availability
BC500 Critical Upgrade to 1.1.3-0442 or above.
CC400W Critical Upgrade to 1.1.3-0442 or above.
TC500 Critical Upgrade to 1.1.3-0442 or above.

Mitigation

None

Detail

Reserved

Acknowledgement

Tim Coen (https://security-consulting.icu/)

Revision

Revision Date Description
1 2024-10-18 Initial public release.