CVE-2024-4464

Publication date

2024-12-18 06:00:18

Family

synology

State

PUBLISHED

Description

Authorization bypass through user-controlled key vulnerability in streaming service in Synology Media Server before 1.4-2680, 2.0.5-3152 and 2.2.0-3325 allows remote attackers to read specific files via unspecified vectors.