CVE-2024-47272

Description

Incorrect authorization vulnerability in IO Module functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remote authenticated users with administrator privileges to limited file write via unspecified vectors.

References

• https://www.synology.com/en-global/security/advisory/Synology_SA_24_25