CVE-2024-47273

MEDIUM NVD

CVSS Score 4.3

Severity MEDIUM

Published Jun 03, 2026

Vendor unknown

Description

An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in Backup Task functionality in Synology Hyper Backup before 4.1.2-4036 allows remote authenticated users to write specific files via unspecified vectors.

References

https://www.synology.com/en-global/releaseNote/HyperBackup?model=DS224%2B&os=DSM&version=7_x_series