Synology DiskStation Manager Unified Controller (DSMUC) 3.1
Approved changes feed: RSS · Atom
cpe:2.3:a:synology:diskstation_manager_unified_controller:3.1:*:*:*:*:*:*:*
part: a version: 3.1 update: *
| Vendor | Synology (65464e9b-7339-559d-9719-837f074e0220) |
|---|---|
| Product | Diskstation Manager Unified Controller (86652503-9874-5495-a03f-3bdedaed71be) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-10442 |
not_vulnerable | 2026-06-03 14:54:11.725050 |
Details available
CRITICAL (10)
Off-by-one error vulnerability in the transmission component in Synology Replication Service before 1.0.12-0066, 1.2.2-0353 and 1.3.0-0423 and Synology Unified Controller (DSMUC) before 3.1.4-23079 allows remote attackers to execute arbitrary code, potentially leading to a broader impact across the system via unspecified vectors.
Published: 2025-03-19T02:14:03.691Z
Updated: 2025-03-19T14:13:16.719Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-2729 |
vulnerable | 2026-06-03 14:51:43.775471 |
Details available
MEDIUM (5.9)
Use of insufficiently random values vulnerability in User Management Functionality in Synology DiskStation Manager (DSM) before 7.2-64561 allows remote attackers to obtain user credential via unspecified vectors.
Published: 2023-06-13T07:11:54.850Z
Updated: 2025-01-03T15:24:12.653Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-0142 |
vulnerable | 2026-06-03 14:48:45.686768 |
Details available
MEDIUM (6.5)
Uncontrolled search path element vulnerability in Backup Management functionality in Synology DiskStation Manager (DSM) before 6.2.4-25556-8, 7.0.1-42218-7 and 7.1-42661 allows remote authenticated users with administrator privileges to read or write arbitrary files via unspecified vectors.
Published: 2023-06-13T06:52:50.745Z
Updated: 2025-01-03T01:55:23.191Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.