CVE-2022-49041

Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to crash the client via unspecified vectors.
Configurations

Configuration 1 (hide)

cpe:2.3:a:synology:drive_client:*:*:*:*:*:desktop:*:*

History

08 Oct 2024, 16:06

Type Values Removed Values Added
CPE cpe:2.3:a:synology:drive_client:*:*:*:*:*:desktop:*:*
References () https://www.synology.com/en-global/security/advisory/Synology_SA_24_10 - () https://www.synology.com/en-global/security/advisory/Synology_SA_24_10 - Vendor Advisory
First Time Synology
Synology drive Client

26 Sep 2024, 13:32

Type Values Removed Values Added
Summary
  • (es) La vulnerabilidad de copia de búfer sin verificar el tamaño de la entrada ('Desbordamiento de búfer clásico') en la funcionalidad de administración de tareas de copia de seguridad en Synology Drive Client anterior a 3.4.0-15721 permite que los usuarios locales con privilegios de administrador bloqueen el cliente a través de vectores no especificados.

26 Sep 2024, 04:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-26 04:15

Updated : 2024-10-08 16:06


NVD link : CVE-2022-49041

Mitre link : CVE-2022-49041

CVE.ORG link : CVE-2022-49041


JSON object : View

Products Affected

synology

  • drive_client
CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')