Improper encoding or escaping of output vulnerability in the system plugin daemon in Synology BeeStation OS (BSM) before 1.1-65374 and Synology DiskStation Manager (DSM) before 7.2-64570-4, 7.2.1-69057-6 and 7.2.2-72806-1 allows remote attackers to execute arbitrary code via unspecified vectors.
A CWE-116 class error involving improper encoding or escaping of output data in a system plugin daemon. An attacker can deliver specially crafted data over the network, which — due to lack of proper sanitization — is then interpreted and executed by the system in an unintended manner. The attack vector is network-based (AV:N), requires no privileges (PR:N) and no user interaction (UI:N), making this vulnerability particularly dangerous.
Successful exploitation of this vulnerability allows a remote attacker to execute arbitrary code (RCE) on the vulnerable device, potentially gaining full control over it, accessing stored data, or modifying system configuration.
Synology BeeStation OS (BSM) should be immediately updated to version 1.1-65374 or later, and Synology DiskStation Manager (DSM) should be updated to version 7.2-64570-4, 7.2.1-69057-6, or 7.2.2-72806-1 (depending on the branch in use). Detailed information is available in the vendor's security advisories: Synology_SA_24_20 and Synology_SA_24_23.
Synology BeeStation OS (BSM) versions prior to 1.1-65374 and Synology DiskStation Manager (DSM) versions prior to 7.2-64570-4, 7.2.1-69057-6, and 7.2.2-72806-1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HSynology Beestation Os
OSSynology1.01.0.11.0.21.1Synology Diskstation Manager
OSSynology7.2 – 7.2-64570-4 (bez)7.2.1-69057 – 7.2.1-69057-6 (bez)7.2.2 – 7.2.2-72806-1 (bez)
Related vulnerabilities
Classic Buffer Overflow w Synology BeeStation OS — zdalne wykonanie kodu
CSRF umożliwiający RCE w Synology DiskStation Manager i Unified Controller
RCE przez błąd off-by-one w komponencie transmisji Synology Replication Service
OS Command Injection w Synology BeePhotos i Synology Photos — RCE bez uwierzytelnienia
Brak autoryzacji w Synology Surveillance Station — zapis konfiguracji i restart NAS